← All advisories

Unrated severityNVD Advisory· Published Jun 17, 2026· Updated Jun 17, 2026

WordPress Plumbing theme <= 1.6 - PHP Object Injection vulnerability

CVE-2025-69127

Description

Unauthenticated PHP Object Injection in Plumbing <= 1.6 versions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

WordPress/Plumbingllm-create
Range: <=1.6

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

patchstack.com/database/wordpress/theme/plumbing-parts/vulnerability/wordpress-plumbing-theme-1-6-php-object-injection-vulnerabilitymitrevdb-entry

News mentions

1

Wordfence Intelligence Weekly WordPress Vulnerability Report (May 25, 2026 to May 31, 2026)
Wordfence Blog · Jun 4, 2026