Lucene search
K

513 matches found

RedhatCVE
RedhatCVE
added 2026/01/10 5:41 a.m.6 views

CVE-2025-67934

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Wellspring wellspring allows PHP Local File Inclusion.This issue affects Wellspring: from n/a through 2.8...

8.1CVSS5.9AI score0.00434EPSS
Exploits0References1
OSV
OSV
added 2026/01/08 10:17 a.m.4 views

RHSA-2026:0250 Red Hat Security Advisory: gimp:2.8 security update

Bulletin has no description...

7.8CVSS6.9AI score0.00644EPSS
Exploits0References15
OSV
OSV
added 2026/01/08 10:15 a.m.5 views

CVE-2025-67934

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Wellspring wellspring allows PHP Local File Inclusion.This issue affects Wellspring: from n/a through 2.8...

8.1CVSS5.8AI score0.00434EPSS
Exploits0References1
CVE
CVE
added 2026/01/08 9:17 a.m.18 views

CVE-2025-67934

CVE-2025-67934 affects Wellspring (WellSpring WordPress Theme by Mikado-Themes) prior to 2.8, enabling unauthenticated Local File Inclusion via improper handling of PHP include/require filename. Wordfence notes the Wellspring

8.1CVSS6.7AI score0.00434EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.5 views

PT-2026-1909

Name of the Vulnerable Software and Affected Versions Mikado-Themes Wellspring versions prior to 2.8 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Local File Inclusion. This allows for the inclusion of local files. The...

8.1CVSS6.4AI score0.00434EPSS
Exploits0References5
OSV
OSV
added 2026/01/05 10:12 a.m.5 views

RHSA-2026:0027 Red Hat Security Advisory: gimp:2.8 security update

Bulletin has no description...

7.8CVSS7.8AI score0.00644EPSS
Exploits0References15
OSV
OSV
added 2025/12/23 10:6 a.m.4 views

RHSA-2025:23857 Red Hat Security Advisory: gimp:2.8 security update

Bulletin has no description...

7.8CVSS6.9AI score0.00644EPSS
Exploits0References15
CVE
CVE
added 2025/12/16 8:12 a.m.10 views

CVE-2025-49300

CVE-2025-49300 affects WordPress plugin Traveler Option Tree (shinetheme) up to version 2.8. The vulnerability arises from insertion of sensitive information into data that is sent, enabling retrieval of embedded sensitive data from the custom-option-tree component. Affected versions are through ...

2.7CVSS6.5AI score0.0023EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.7 views

PT-2025-51378

Name of the Vulnerable Software and Affected Versions shinetheme Traveler Option Tree versions through 2.8 Description A flaw exists in shinetheme Traveler Option Tree that allows the retrieval of embedded sensitive data due to the insertion of sensitive information into sent data. The issue is...

2.7CVSS6.3AI score0.0023EPSS
Exploits0References3
OSV
OSV
added 2025/12/02 10:6 a.m.4 views

RHSA-2025:22417 Red Hat Security Advisory: gimp:2.8 security update

Bulletin has no description...

7.8CVSS6.9AI score0.02751EPSS
Exploits0References45
CVE
CVE
added 2025/11/24 6:32 a.m.17 views

CVE-2025-13588

The CVE-2025-13588 affects lKinderBueno Streamity Xtream IPTV Player up to version 2.8. The vulnerable element is an unknown function in public/proxy.php, leading to server-side request forgery (SSRF) that can be triggered remotely. Public exploitation exists, with CVSS-derived notes indicating n...

6.5CVSS6.5AI score0.00218EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2025/11/20 8:59 p.m.10 views

vLLM deserialization vulnerability leading to DoS and potential RCE

Summary A memory corruption vulnerability that leading to a crash denial-of-service and potentially remote code execution RCE exists in vLLM versions 0.10.2 and later, in the Completions API endpoint. When processing user-supplied prompt embeddings, the endpoint loads serialized tensors using...

8.8CVSS8.3AI score0.00849EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/11/20 8:59 p.m.2 views

GHSA-MRW7-HF4F-83PF vLLM deserialization vulnerability leading to DoS and potential RCE

Summary A memory corruption vulnerability that leading to a crash denial-of-service and potentially remote code execution RCE exists in vLLM versions 0.10.2 and later, in the Completions API endpoint. When processing user-supplied prompt embeddings, the endpoint loads serialized tensors using...

8.8CVSS6.5AI score0.00849EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/10/24 2:33 p.m.6 views

CVE-2025-60234

Deserialization of Untrusted Data vulnerability in designthemes Single Property single-property allows Object Injection.This issue affects Single Property: from n/a through = 2.8...

8.8CVSS7AI score0.00486EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:16 p.m.16 views

CVE-2025-60234

Deserialization of Untrusted Data vulnerability in designthemes Single Property single-property allows Object Injection.This issue affects Single Property: from n/a through = 2.8...

8.8CVSS0.00486EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/10/08 12:0 a.m.11 views

WordPress Search & Go Theme <= 2.7 is vulnerable to Privilege Escalation

Software Search & Go Type Theme Vulnerable versions = 2.7 Fixed in 2.8 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2025-11522 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 0f681595092d Credits khanhhnahk1...

9.8CVSS7.1AI score0.00522EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-1907

Malware in sbrugna...

7.2CVSS7AI score0.02061EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-6395

Malware in sbrugna...

7.5CVSS6.4AI score0.01196EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-0095

Malware in sbrugna...

1.2CVSS6.4AI score0.00572EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-0869

Malware in sbrugna...

5.5CVSS5.4AI score0.00422EPSS
Exploits0References5
Rows per page
Query Builder