Theme-spirit Spirit Framework

2 CVEs affecting Theme-spirit Spirit Framework. Latest disclosed: 2025-10-03. Critical: 1, High: 1.

Top CVEs affecting Theme-spirit Spirit Framework
CVESeverityScorePublishedSummary
CVE-2025-6388Critical9.82025-10-03The Spirit Framework plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.2.14. This is due to the custom_action…
CVE-2025-10269High7.52025-09-12The Spirit Framework plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.2.13. This makes it possible for authen…