High 7.5
2025-09-22< 8.6.9
Soledad <= 8.6.8 - Authenticated (Contributor+) Local File Inclusion
Soledad
Vulnerabilities 18Slug soledad
Minimum safe version
8.6.9.1
Update to 8.6.9.1 or later to address 16 fixable vulnerabilities
⚠ 2 vulnerabilities have no fix
Medium 6.5 Unfixed
2026-02-19≤ 8.7.2
CVE-2026-27069
Critical 9.8
2025-12-18< 8.6.9.1
CVE-2025-64188
High 7.5 Unfixed
2025-12-16≤ 8.7.0
CVE-2025-68066
Medium 6.5
2025-09-22< 8.6.9
Soledad <= 8.6.8 - Authenticated (Contributor+) Stored Cross-Site Scripting
High 8.8
2025-08-16< 8.6.8
Soledad <= 8.6.7 - Authenticated (Contributor+) Local File Inclusion via 'header_layout'
Medium 6.4
2025-08-16< 8.6.8
Soledad <= 8.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'pcsml_smartlists_h'
High 7.3
2025-08-16< 8.6.8
Soledad <= 8.6.7 - Unauthenticated Arbitrary Shortcode Execution
High 8.1
2024-12-06< 8.6.0
CVE-2024-11289
Medium 6.5
2024-04-09< 8.4.6
CVE-2024-31368
High 7.1
2024-04-09< 8.4.6
CVE-2024-31367
Medium 5.4
2024-04-09< 8.4.6
CVE-2024-31369
High 7.1
2023-12-14< 8.4.2
CVE-2023-49827
High 8.5
2023-12-20< 8.4.2
CVE-2023-49825
High 8.1
2023-12-21< 8.4.2
CVE-2023-49826
N/A
2022-11-01< 8.2.6
WordPress Soledad premium theme <= 8.2.5 - Broken Access Control vulnerability
Medium 5.4
2022-11-18< 8.2.6
CVE-2022-41788
Medium 6.1
2023-09-13< 8.2.5
WordPress Soledad Theme <= 8.2.4 is vulnerable to Cross Site Scripting (XSS)