CVE-2026-39555
WordPress Askka theme <= 1.3.1 - PHP Object Injection vulnerabilityDeserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. This issue affects Askka: from n/a through 1.3.1.
We have discovered 7 live websites that are affected by CVE-2026-39555.
Common Weakness Enumeration
CWE-502 Deserialization of Untrusted DataDetails
- Published - Jun 2, 2026
- Updated - Jun 2, 2026
Credits
- Denver Jackson | Patchstack Bug Bounty Program (finder)
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2026-39555 Italy | 2 websites |
 Switzerland | 1 websites |
 Germany | 1 websites |
 Spain | 1 websites |
 GB | 1 websites |
 Romania | 1 websites |
Website Distribution by TLD
Number of websites using CVE-2026-39555| .com | 2 websites |
| .co.uk | 1 websites |
| .es | 1 websites |
| .fr | 1 websites |
| .org | 1 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2026-39555
Top websites that are affected by CVE-2026-39555. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***************.com | Germany | *,***,*** | |
| *********.***************.org | Italy | *,***,*** | |
| ***********.com | Italy | *,***,*** | |
| ***********.fr | Switzerland | *,***,*** | |
| ****************.ro | Romania | *,***,*** | |
| *****.**.uk | GB | *,***,*** | |
| ********.es | Spain | *,***,*** |