EIP-2026-114314

PRE-CVE

WordPress Theme Colormix - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-114314. PoCs published by MustLive.

AI-analyzed exploit summary The provided text describes multiple vulnerabilities in the Colormix theme for WordPress, including XSS, path disclosure, and content spoofing. It includes example URLs demonstrating these vulnerabilities but does not contain executable exploit code.

Description

WordPress Theme Colormix - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by MustLive · textwebappsphp

https://www.exploit-db.com/exploits/38487

View Code ZIP pw:eip

The provided text describes multiple vulnerabilities in the Colormix theme for WordPress, including XSS, path disclosure, and content spoofing. It includes example URLs demonstrating these vulnerabilities but does not contain executable exploit code.

Classification

Writeup 90%

Attack Type

Xss | Info Leak | Other

Complexity

Trivial

Reliability

Theoretical

Target: Colormix theme for WordPress

No auth needed

Prerequisites: Access to the vulnerable WordPress site with the Colormix theme installed

MITRE ATT&CK

T1059.007 - JavaScript T1119 - Automated Collection

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026