← Back

Makeaholic

makeaholic

Vendor: Thememove • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-58210
1Thememove
1Makeaholic
Apr 23, 2026
Sep 3, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Missing Authorization vulnerability in ThemeMove Makeaholic makeaholic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Makeaholic: from n/a through <= 1.8.5.
CVE-2025-54700
1Thememove
1Makeaholic
Apr 23, 2026
Aug 14, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeMove Makeaholic makeaholic allows PHP Local File Inclusion.This issue affects Makeaholic: from...Show more
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeMove Makeaholic makeaholic allows PHP Local File Inclusion.This issue affects Makeaholic: from n/a through <= 1.8.4.Show less