CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/04/08 9:31 a.m.•1 views

EUVD-2026-20365

NVD•added 2026/04/08 9:16 a.m.•2 views

CVE-2026-39679

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme Freeio freeio allows PHP Local File Inclusion.This issue affects Freeio: from n/a through = 1.3.21...

7.5CVSS0.00147EPSS

CVE•added 2026/04/08 8:30 a.m.•6 views

CVE-2026-39681

CVE-2026-39681 concerns a Local File Inclusion in the WordPress Homeo theme (Homeo)

7.5CVSS5.9AI score0.00147EPSS

ATTACKERKB•added 2026/04/08 8:30 a.m.•2 views

CVE-2026-39681

Positive Technologies•added 2026/04/08 12:0 a.m.•0 views

PT-2026-31241

Positive Technologies•added 2026/04/08 12:0 a.m.•1 views

Exploits0References3

PT-2026-31243

RedhatCVE•added 2026/01/23 9:16 p.m.•3 views

Exploits0References3

CVE-2025-49249

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ApusTheme Drone drone allows Reflected XSS.This issue affects Drone: from n/a through = 1.40...

7.1CVSS5.4AI score0.00064EPSS

NVD•added 2026/01/22 5:15 p.m.•1 views

CVE-2025-49249

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ApusTheme Drone drone allows Reflected XSS.This issue affects Drone: from n/a through = 1.40...

7.1CVSS0.00064EPSS

ATTACKERKB•added 2026/01/22 4:51 p.m.•1 views

CVE-2025-49249

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ApusTheme Drone drone allows Reflected XSS.This issue affects Drone: from n/a through = 1.40...

6.1CVSS5.3AI score0.00064EPSS

CNNVD•added 2026/01/22 12:0 a.m.•1 views

WordPress Plugin ApusTheme Drone Cross-site Scripting Vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

7.1CVSS5.7AI score0.00064EPSS

EUVD•added 2025/12/18 9:30 a.m.•1 views

EUVD-2025-204213

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme Greenorganic greenorganic allows PHP Local File Inclusion.This issue affects Greenorganic: from n/a through = 2.45...

8.1CVSS6.6AI score0.0011EPSS

RedhatCVE•added 2025/11/07 5:32 p.m.•1 views

CVE-2025-62014

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme ITok itok.This issue affects ITok: from n/a through = 1.1.42...

8.1CVSS7.1AI score0.0014EPSS

RedhatCVE•added 2025/11/07 5:32 p.m.•1 views

CVE-2025-62010

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme Famita famita allows PHP Local File Inclusion.This issue affects Famita: from n/a through = 1.54...

8.1CVSS7.1AI score0.00124EPSS

EUVD•added 2025/11/06 6:32 p.m.•1 views

EUVD-2025-38096

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme ITok itok.This issue affects ITok: from n/a through = 1.1.42...

6.6AI score0.0014EPSS

EUVD•added 2025/11/06 6:32 p.m.•1 views

EUVD-2025-38099

6.6AI score0.00124EPSS

NVD•added 2025/11/06 4:16 p.m.•4 views

CVE-2025-62014

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme ITok itok.This issue affects ITok: from n/a through = 1.1.42...

8.1CVSS0.0014EPSS

Positive Technologies•added 2025/11/06 12:0 a.m.•1 views

PT-2025-45292

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme ITok itok.This issue affects ITok: from n/a through = 1.1.42...

8.1CVSS7.1AI score0.0014EPSS

Positive Technologies•added 2025/11/06 12:0 a.m.•1 views

PT-2025-45289

8.1CVSS7.1AI score0.00124EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-27820

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00185EPSS