Critical 9.8 Unfixed
2026-03-25≤ 1.7.0
CVE-2026-27051
Golo
Vulnerabilities 11Slug golo
Minimum safe version
1.7.5
Update to 1.7.5 or later to address 10 fixable vulnerabilities
⚠ 1 vulnerability has no fix
High 7.1
2026-03-25< 1.7.5
CVE-2026-23973
High 7.5
2026-02-05< 1.7.5
Golo < 1.7.5 - Authenticated (Contributor+) Local File Inclusion
Medium 5.3
2026-02-05< 1.7.5
Golo < 1.7.5 - Missing Authorization
High 7.1
2025-08-28< 1.7.2
CVE-2025-54724
Critical 9.8
2025-08-28< 1.7.1
CVE-2025-54725
Critical 9.8
2025-06-02< 1.7.1
Golo <= 1.7.0 - Authentication Bypass to Account Takeover
Critical 9.8
2025-03-07< 1.6.11
CVE-2024-12876
N/A
< 1.3.3
Golo < 1.3.3 - Unauthenticated Reflected XSS
N/A
2020-07-11< 1.3.3
Golo - City Travel Guide WordPress Theme < 1.3.3 - Reflected Cross-Site Scripting
N/A
2020-07-15< 1.3.3
WordPress Golo premium theme <= 1.3.2 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability