CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

RedhatCVE•added 2026/02/20 1:26 p.m.•3 views

CVE-2026-25326

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in cmsmasters CMSMasters Content Composer cmsmasters-content-composer allows PHP Local File Inclusion.This issue affects CMSMasters Content Composer: from n/a through = 1.4.5...

7.5CVSS5.5AI score0.0017EPSS

Exploits0References1

RedhatCVE•added 2026/02/20 1:26 p.m.•3 views

CVE-2026-23547

Missing Authorization vulnerability in cmsmasters CMSMasters Content Composer cmsmasters-content-composer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CMSMasters Content Composer: from n/a through = 2.5.8...

7.1CVSS5.5AI score0.00042EPSS

Exploits0References1

NVD•added 2026/02/19 9:16 a.m.•1 views

CVE-2026-25326

7.5CVSS0.0017EPSS

Exploits0References1

Cvelist•added 2026/02/19 8:26 a.m.•24 views

CVE-2026-25326 WordPress CMSMasters Content Composer plugin <= 1.4.5 - Local File Inclusion vulnerability

7.5CVSS0.0017EPSS

Exploits0References1

Vulnrichment•added 2026/02/19 8:26 a.m.•1 views

CVE-2026-25326 WordPress CMSMasters Content Composer plugin <= 1.4.5 - Local File Inclusion vulnerability

7.5CVSS5.6AI score0.0017EPSS

Exploits0References1

ATTACKERKB•added 2026/02/19 8:26 a.m.•3 views

CVE-2026-25326

5.5AI score0.0017EPSS

Exploits0References2

Cvelist•added 2026/02/19 8:26 a.m.•24 views

CVE-2026-23547 WordPress CMSMasters Content Composer plugin <= 2.5.8 - Broken Access Control vulnerability

7.1CVSS0.00042EPSS

Exploits0References1

CVE•added 2026/02/19 8:26 a.m.•8 views

CVE-2026-23547

CVE-2026-23547 : WordPress CMSMasters Content Composer plugin

7.1CVSS5.5AI score0.00042EPSS

Exploits0References1

Vulnrichment•added 2026/02/19 8:26 a.m.•1 views

CVE-2026-23547 WordPress CMSMasters Content Composer plugin <= 2.5.8 - Broken Access Control vulnerability

7.1CVSS5.5AI score0.00042EPSS

Exploits0References1

CNNVD•added 2026/02/19 12:0 a.m.•2 views

WordPress plugin CMSMasters Content Composer 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...

7.1CVSS5.8AI score0.00042EPSS

Exploits0References1

Positive Technologies•added 2026/02/19 12:0 a.m.•1 views

PT-2026-20664

5.5AI score0.00042EPSS

Exploits0References1

Positive Technologies•added 2026/02/19 12:0 a.m.•3 views

PT-2026-20696

5.5AI score0.0017EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-20006

Malicious code in bioql PyPI...

8.1CVSS6.4AI score0.00547EPSS

Exploits0References1

RedhatCVE•added 2025/07/06 11:21 a.m.•2 views

CVE-2025-4414

8.1CVSS5.9AI score0.00547EPSS

Exploits0References1

NVD•added 2025/07/04 12:15 p.m.•2 views

CVE-2025-4414

8.1CVSS0.00547EPSS

Exploits0References1

CVE•added 2025/07/04 11:17 a.m.•17 views

CVE-2025-4414

CVE-2025-4414 concerns the WordPress CMSMasters Content Composer plugin. The vulnerability is an improper control of the filename used in Include/Require, enabling PHP Local File Inclusion (LFI) due to insufficient filtering of local file resource calls in CMSMasters Content Composer. Affected pr...

8.1CVSS5.9AI score0.00547EPSS

Exploits0References1

Vulnrichment•added 2025/07/04 11:17 a.m.•2 views

CVE-2025-4414 WordPress CMSMasters Content Composer < 2.5.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in cmsmasters CMSMasters Content Composer allows PHP Local File Inclusion. This issue affects CMSMasters Content Composer: from n/a through n/a...

8.1CVSS7.4AI score0.00547EPSS

Exploits0References1

Positive Technologies•added 2025/07/04 12:0 a.m.•3 views

PT-2025-27911 · Cmsmasters · Cmsmasters Content Composer

Name of the Vulnerable Software and Affected Versions: CMSMasters Content Composer affected versions not specified Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion'. This allows PHP Local Fi...

8.1CVSS6.2AI score0.00547EPSS

Exploits0References3

CNNVD•added 2025/07/04 12:0 a.m.•1 views

WordPress plugin CMSMasters Content Composer 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A file inclusion vulnerability exists in the WordPress CMSMasters Content Composer plugin that stems from not doing effective filtering of local file resource calls, which can b...

8.1CVSS6.5AI score0.00547EPSS

Exploits0References2

NVD•added 2024/10/09 2:15 a.m.•4 views

CVE-2024-7963

The CMSMasters Content Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's multiple shortcodes in all versions up to, and including, 1.8.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00338EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by