Lucene search
K

662 matches found

CVE
CVE
added 2026/04/20 7:27 p.m.23 views

CVE-2026-5478

The Everest Forms WordPress plugin (versions up to and including 3.4.4) is vulnerable to Arbitrary File Read and Deletion via the old_files field. The root cause is trusting attacker-controlled data from public form submissions as legitimate server-side upload state and converting attacker-suppli...

8.1CVSS5.8AI score0.01022EPSS
Exploits0References5
NVD
NVD
added 2026/04/15 6:16 p.m.4 views

CVE-2026-30993

Slah CMS v1.5.0 and below was discovered to contain a remote code execution RCE vulnerability in the session function at config.php. This vulnerability is exploitable via a crafted input...

9.8CVSS0.00515EPSS
Exploits0References2
NVD
NVD
added 2026/04/15 5:17 p.m.5 views

CVE-2026-30994

Incorrect access control in the config.php component of Slah v1.5.0 and below allows unauthenticated attackers to access sensitive information, including active session credentials...

7.5CVSS0.00254EPSS
Exploits0References2
CVE
CVE
added 2026/04/15 12:0 a.m.10 views

CVE-2026-30993

Slah CMS

9.8CVSS6.4AI score0.00515EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/08 9:33 p.m.5 views

EUVD-2026-20643

The MW WP Form plugin for WordPress is vulnerable to Arbitrary File Move/Read in all versions up to and including 5.1.1. This is due to insufficient validation of the $name parameter upload field key passed to the generateuserfiledirpath function, which uses WordPress's pathjoin — a function that...

8.1CVSS6.6AI score0.01069EPSS
Exploits0References6
NVD
NVD
added 2026/04/03 8:16 a.m.5 views

CVE-2026-4350

The Perfmatters plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in all versions up to, and including, 2.5.9.1. This is due to the PMCS::actionhandler method processing the $GET'delete' parameter without any sanitization, authorization check, or nonce verification...

8.1CVSS0.00658EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/26 9:30 a.m.4 views

EUVD-2025-209042

The Shared Files WordPress plugin before 1.7.58 allows users with a role as low as Contributor to download any file on the web server such as wp-config.php via a path traversal vector...

6.8CVSS5.8AI score0.0043EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.8 views

PT-2026-28212

The Shared Files WordPress plugin before 1.7.58 allows users with a role as low as Contributor to download any file on the web server such as wp-config.php via a path traversal vector...

5.8AI score0.0043EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.9 views

PT-2026-28418

Name of the Vulnerable Software and Affected Versions Smart Slider 3 versions prior to 3.5.1.34 Description The Smart Slider 3 plugin for WordPress contains a flaw that allows authenticated attackers with Subscriber-level access or higher to read arbitrary files on the server. This is possible...

6.5CVSS5.8AI score0.00484EPSS
Exploits0References19
RedhatCVE
RedhatCVE
added 2026/03/08 7:56 a.m.5 views

CVE-2025-14675

The Meta Box plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajaxdeletefile' function in all versions up to, and including, 5.11.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete...

7.2CVSS6.4AI score0.00654EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/07 3:30 a.m.6 views

EUVD-2026-10105

The Easy PHP Settings plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 1.0.4 via the updatewpmemoryconstants method. This is due to insufficient input validation on the wpmemorylimit and wpmaxmemorylimit settings before writing them to wp-config.php...

7.2CVSS6.1AI score0.00374EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/07 1:21 a.m.5 views

CVE-2026-3352

The Easy PHP Settings plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 1.0.4 via the updatewpmemoryconstants method. This is due to insufficient input validation on the wpmemorylimit and wpmaxmemorylimit settings before writing them to wp-config.php...

7.2CVSS6.1AI score0.00374EPSS
Exploits0References5
NVD
NVD
added 2026/02/03 6:16 p.m.7 views

CVE-2020-37116

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS0.00415EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/02/03 4:52 p.m.30 views

CVE-2020-37116 GUnet OpenEclass 1.7.3 E-learning platform - phpMyAdmin Remote Access

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS0.00415EPSS
Exploits1References4
EUVD
EUVD
added 2026/02/03 4:52 p.m.8 views

EUVD-2020-30979

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS5.5AI score0.00415EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/01/28 12:28 p.m.9 views

CVE-2026-1056 Snow Monkey Forms <= 12.0.3 - Unauthenticated Arbitrary File Deletion via Path Traversal

The Snow Monkey Forms plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'generateuserdirpath' function in all versions up to, and including, 12.0.3. This makes it possible for unauthenticated attackers to delete arbitrary files on the...

9.8CVSS6.5AI score0.12024EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/28 5:30 a.m.3 views

CVE-2025-14610

The TableMaster for Elementor plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.3.6. This is due to the plugin not restricting which URLs can be fetched when importing CSV data from a URL in the Data Table widget. This makes it possible for...

7.2CVSS5.9AI score0.00284EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/28 12:0 a.m.8 views

PT-2026-5058

Name of the Vulnerable Software and Affected Versions TableMaster for Elementor versions up to and including 1.3.6 Description The TableMaster for Elementor plugin for WordPress is susceptible to Server-Side Request Forgery. This occurs because the plugin does not limit the URLs that can be...

7.2CVSS5.5AI score0.00284EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/01/21 3:27 p.m.16 views

CVE-2025-58092

Multiple reflected cross-site scripting xss vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger these vulnerabilities.This...

6.1CVSS5.6AI score0.00229EPSS
Exploits1References1
OSV
OSV
added 2026/01/20 3:17 p.m.4 views

CVE-2025-58093

Multiple reflected cross-site scripting xss vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger these vulnerabilities.This...

6.1CVSS5.9AI score0.00229EPSS
Exploits1References1
Rows per page
Query Builder