CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

WordPress BeeTeam368 Extensions plugin is a WordPress plugin that is mainly used to extend the functionality of a website. The WordPress BeeTeam368 Extensions plugin suffers from a file inclusion vulnerability, which stems from improper control over the filename of an include or request statement...

10CVSS6.9AI score0.0021EPSS

Exploits0References1

RedhatCVE•added 2025/08/16 11:25 a.m.•3 views

CVE-2025-25174

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in beeteam368 BeeTeam368 Extensions beeteam368-extensions allows PHP Local File Inclusion.This issue affects BeeTeam368 Extensions: from n/a through = 1.9.4...

10CVSS5.9AI score0.0021EPSS

Exploits0References1

NVD•added 2025/08/14 11:15 a.m.•1 views

CVE-2025-25174

10CVSS0.0021EPSS

Exploits0References1

CVE•added 2025/08/14 10:34 a.m.•14 views

CVE-2025-25174

BeeTeam368 Extensions (WordPress) is affected by CVE-2025-25174: an improper control of the filename for Include/Require statements leads to Local File Inclusion in versions up to 1.9.4. The CVSS 3.1 vector indicates Network access, low attack complexity, and high impact to confidentiality, integ...

10CVSS5.9AI score0.0021EPSS

Exploits0References1

Cvelist•added 2025/08/14 10:34 a.m.•6 views

CVE-2025-25174 WordPress BeeTeam368 Extensions Plugin <= 1.9.4 - Local File Inclusion Vulnerability

10CVSS0.0021EPSS

Exploits0References1

Vulnrichment•added 2025/08/14 10:34 a.m.•1 views

CVE-2025-25174 WordPress BeeTeam368 Extensions Plugin <= 1.9.4 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in beeteam368 BeeTeam368 Extensions allows PHP Local File Inclusion. This issue affects BeeTeam368 Extensions: from n/a through 1.9.4...

10CVSS7.4AI score0.0021EPSS

Exploits0References1

CNNVD•added 2025/08/14 12:0 a.m.•2 views

WordPress plugin BeeTeam368 Extensions 安全漏洞

10CVSS6.8AI score0.0021EPSS

Exploits0References1

Positive Technologies•added 2025/08/14 12:0 a.m.•2 views

PT-2025-33152 · Unknown · Beeteam368 Extensions

Name of the Vulnerable Software and Affected Versions: BeeTeam368 Extensions versions through 1.9.4 Description: BeeTeam368 Extensions is susceptible to a PHP Local File Inclusion due to an Improper Control of Filename for Include/Require Statement. This allows for the inclusion of local files...

10CVSS6.3AI score0.0021EPSS

Exploits0References4

CNVD•added 2025/07/18 12:0 a.m.•4 views

WordPress Plugin BeeTeam368 Extensions Code Issue Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists in the WordPress plugin BeeTeam368 Extensions, which stems from a lack...

8.8CVSS8AI score0.01355EPSS

Exploits0References1

NVD•added 2025/07/12 8:15 a.m.•2 views

CVE-2025-6423

The BeeTeam368 Extensions plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the handlesubmituploadfile function in all versions up to, and including, 2.3.5. This makes it possible for authenticated attackers with Subscriber-level access or higher ...

8.8CVSS0.01355EPSS

Exploits0References2

CNNVD•added 2025/07/12 12:0 a.m.•1 views

WordPress plugin BeeTeam368 Extensions 代码问题漏洞

8.8CVSS7.9AI score0.01355EPSS

Exploits0References3

Positive Technologies•added 2025/07/12 12:0 a.m.•1 views

PT-2025-29310 · WordPress · Beeteam368 Extensions

Name of the Vulnerable Software and Affected Versions: BeeTeam368 Extensions plugin for WordPress versions up to and including 2.3.5 Description: The BeeTeam368 Extensions plugin for WordPress is susceptible to arbitrary file uploads due to the absence of file type validation within the handle...

8.8CVSS7.1AI score0.01355EPSS

Exploits0References10

OSV•added 2025/06/28 4:15 a.m.•2 views

CVE-2025-6381

The BeeTeam368 Extensions plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handleremovetempfile function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of...

8.8CVSS5.6AI score0.00484EPSS

Exploits0References2

NVD•added 2025/06/28 4:15 a.m.•3 views

CVE-2025-6381

8.8CVSS0.00484EPSS

Exploits0References2

NVD•added 2025/06/28 4:15 a.m.•2 views

CVE-2025-6379

The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handlelivefn function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the...

8.8CVSS0.00484EPSS

Exploits0References2

Vulnrichment•added 2025/06/28 3:21 a.m.•2 views

CVE-2025-6381 BeeTeam368 Extensions <= 2.3.4 - Authenticated (Subscriber+) Directory Traversal to Arbitrary File Deletion

8.8CVSS6AI score0.00484EPSS

Exploits0References2

CVE•added 2025/06/28 3:21 a.m.•19 views

CVE-2025-6381

CVE-2025-6381 is a documented vulnerability in BeeTeam368 Extensions for WordPress (

8.8CVSS6.1AI score0.00484EPSS

Exploits0References2Affected Software1

Rows per page