PatchSiren

Thrive Themes CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL Thrive Themes CVE published 2026-06-17

CVE-2026-49107

CVE-2026-49107 is a critical vulnerability in the Thrive Apprentice plugin, affecting versions prior to 10.8.10.2. This vulnerability allows for unauthenticated PHP object injection, posing a significant risk to affected systems. With a CVSS score of 9.8, it is considered critical. The vulnerability was published on June 17, 2026, and last modified on the same day. Users of the Thrive Apprentice plugin sh [truncated]