cbcvebase.

Villatheme Happy vulnerabilities

5 known vulnerabilities affecting villatheme/happy.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2025-49372P2CRITICALCVSS 10.0≤ 1.0.72025-11-06
CVE-2025-49372 [CRITICAL] CWE-94 CVE-2025-49372: Improper Control of Generation of Code ('Code Injection') vulnerability in VillaTheme HAPPY happy-he Improper Control of Generation of Code ('Code Injection') vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Remote Code Inclusion.This issue affects HAPPY: from n/a through <= 1.0.7.
nvd
CVE-2025-67977P3HIGHCVSS 8.2≤ 1.0.82026-02-20
CVE-2025-67977 [HIGH] CWE-862 CVE-2025-67977: Missing Authorization vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Missing Authorization vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HAPPY: from n/a through <= 1.0.8.
nvd
CVE-2025-53571P3MEDIUMCVSS 6.5≤ 1.0.62025-09-05
CVE-2025-53571 [MEDIUM] CWE-862 CVE-2025-53571: Missing Authorization vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Missing Authorization vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HAPPY: from n/a through <= 1.0.6.
nvd
CVE-2026-39593P3MEDIUMCVSS 6.5≥ n/a, ≤ 1.0.102026-05-21
CVE-2026-39593 [MEDIUM] CWE-862 CVE-2026-39593: Missing Authorization vulnerability in VillaTheme HAPPY allows Exploiting Incorrectly Configured Acc Missing Authorization vulnerability in VillaTheme HAPPY allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects HAPPY: from n/a through 1.0.10.
nvd
CVE-2025-68556P4MEDIUMCVSS 5.3≤ 1.0.92025-12-23
CVE-2025-68556 [MEDIUM] CWE-862 CVE-2025-68556: Missing Authorization vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Missing Authorization vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HAPPY: from n/a through <= 1.0.9.
nvd
Villatheme Happy vulnerabilities | cvebase