CRITICAL
ThemeREX Group
CVE published 2026-06-17
CVE-2026-39529
CVE-2026-39529 is a critical vulnerability in the Elementra theme, affecting versions up to 1.0.9. This vulnerability allows for unauthenticated PHP object injection, posing a significant risk to affected systems. With a CVSS score of 9.8, it is considered critical. The vulnerability was published on June 17, 2026, and last modified on the same day. Users of the Elementra theme should take immediate actio [truncated]