Missing Authorization Vulnerability in Kallyas Theme by Hogash
CVE-2025-62018

Currently unrated

Key Information:

Vendor

WordPress
Status
Kallyas
Vendor
CVE Published:
6 November 2025

What is CVE-2025-62018?

The Missing Authorization vulnerability in the Kallyas theme by Hogash could allow unauthorized users to access restricted areas of the theme. This issue affects versions of Kallyas up to and including 4.22.0, potentially exposing sensitive settings and allowing risk to website integrity.

Affected Version(s)

Kallyas <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Theme/kally...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Rafie Muhammad (Patchstack)
JSON
.
CVE-2025-62018 : Missing Authorization Vulnerability in Kallyas Theme by Hogash