CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Vulnrichment•added 2026/03/05 5:53 a.m.•2 views

CVE-2026-27381 WordPress Aora theme <= 1.3.15 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Aora aora allows PHP Local File Inclusion.This issue affects Aora: from n/a through = 1.3.15...

8.1CVSS5.8AI score0.00172EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:53 a.m.•27 views

CVE-2026-27381 WordPress Aora theme <= 1.3.15 - Local File Inclusion vulnerability

8.1CVSS0.00172EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•9 views

CVE-2026-27381

CVE-2026-27381 describes a Local File Inclusion (LFI) in the WordPress theme/application stack: the Aora theme (thembay Aora aora) vulnerable via improper control of filename in include/require statements. Affected: Aora theme ≤ 1.3.15 (n/a through 1.3.15). CVSS v3.1 base score 8.1 (HIGH) with ne...

8.1CVSS5.9AI score0.00172EPSS

Exploits0References1

Patchstack•added 2026/02/24 6:27 a.m.•3 views

WordPress Aora theme <= 1.3.15 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Aora versions = 1.3.15...

8.1CVSS5.3AI score0.00172EPSS

Exploits0Affected Software1

Cvelist•added 2025/12/30 10:47 a.m.•21 views

CVE-2025-68985 WordPress Aora theme <= 1.3.15 - Local File Inclusion vulnerability

7.5CVSS0.00103EPSS

Exploits0References1

Vulnrichment•added 2025/12/30 10:47 a.m.•2 views

CVE-2025-68985 WordPress Aora theme <= 1.3.15 - Local File Inclusion vulnerability

7.5CVSS6.7AI score0.00103EPSS

Exploits0References1

CVE•added 2025/12/30 10:47 a.m.•6 views

CVE-2025-68985

CVE-2025-68985 (Aora theme vulnerability) is an authenticated (Contributor+) Local File Inclusion affecting the Aora WordPress theme (Aora – Home & Lifestyle Elementor WooCommerce Theme) up to version 1.3.15. The issue arises from improper handling of filenames in PHP include/require, enabling an...

7.5CVSS6.7AI score0.00103EPSS

Exploits0References1

Patchstack•added 2025/06/11 11:5 a.m.•3 views

WordPress Aora theme <= 1.3.9 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Phat RiO - BlueRock in WordPress Theme Aora versions = 1.3.9...

8.1CVSS7AI score0.00547EPSS

Exploits0Affected Software1

Patchstack•added 2025/06/11 12:0 a.m.•4 views

WordPress Aora Theme <= 1.3.9 is vulnerable to Local File Inclusion

Software Aora Type Theme Vulnerable versions = 1.3.9 Fixed in 1.3.10 OWASP Top 10 A4: Insecure Design Classification Local File Inclusion CVE CVE-2025-49260 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID c279fefa752d Credits Phat RiO - BlueRock Required privilege...

8.1CVSS6.8AI score0.00547EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by