Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
Unauthorized Data Injection in Lorem Ipsum Books & Media Store Theme
CVE-2025-69405
Summary
A vulnerability in the Lorem Ipsum Books & Media Store theme allows hackers to inject unauthorized data, potentially compromising the security of your store. This affects versions 1.2.6 and earlier. Update to a fixed version to protect your store's data.
Original title
Deserialization of Untrusted Data vulnerability in ThemeREX Lorem Ipsum | Books & Media Store lorem-ipsum-books-media-store allows Object Injection.This issue affects Lorem Ipsum | Books & Media St...
Original description
Deserialization of Untrusted Data vulnerability in ThemeREX Lorem Ipsum | Books & Media Store lorem-ipsum-books-media-store allows Object Injection.This issue affects Lorem Ipsum | Books & Media Store: from n/a through <= 1.2.6.
nvd CVSS3.1
9.8
Vulnerability type
CWE-502
Deserialization of Untrusted Data
Published: 20 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026