PT-2025-36347 · WordPress · Rehub - Price Comparison

Matthew Rollings

Published

2025-09-06

Updated

2025-09-06

CVE-2025-7366

Report an issue

CVSS v3.1

7.3

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions:

The REHub - Price Comparison, Multi Vendor Marketplace Wordpress Theme versions prior to 19.9.8

Description:

The REHub - Price Comparison, Multi Vendor Marketplace Wordpress Theme for WordPress is susceptible to arbitrary shortcode execution due to improper validation of a value before running `do shortcode`. This allows unauthenticated attackers to execute arbitrary shortcodes.

Recommendations:

Update The REHub - Price Comparison, Multi Vendor Marketplace Wordpress Theme to version 19.9.8 or later.

Fix

Code Injection

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2025-7366

Affected Products

Rehub - Price Comparison

PT-2025-36347 · WordPress · Rehub - Price Comparison

Weakness Enumeration

Related Identifiers

Affected Products

References · 7