Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 6:40 a.m.5 views

CVE-2024-50434

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehorse NewsCard newscard.This issue affects NewsCard: from n/a through = 1.3...

8.8CVSS5.9AI score0.00443EPSS
Exploits0References1
Circl
Circl
added 2024/10/28 10:1 p.m.6 views

CVE-2024-50434

creationtimestamp| type| source ---|---|--- 2024-10-28 22:01:31+00:00| seen| https://t.me/cvedetector/9176...

8.8CVSS4.8AI score0.00443EPSS
Exploits0References1
NVD
NVD
added 2024/10/28 8:15 p.m.17 views

CVE-2024-50434

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehorse NewsCard newscard.This issue affects NewsCard: from n/a through = 1.3...

8.8CVSS0.00443EPSS
Exploits0References1
CVE
CVE
added 2024/10/28 8:1 p.m.56 views

CVE-2024-50434

CVE-2024-50434 : Local File Inclusion in WordPress Theme NewsCard (versions <= 1.3) due to improper control of filename in include/require statements. This may enable an unauthenticated attacker to include arbitrary local files via crafted input, potentially leading to code execution. A fix is...

8.8CVSS5.9AI score0.00443EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/24 12:0 a.m.13 views

WordPress NewsCard Theme <= 1.3 is vulnerable to Local File Inclusion

Software NewsCard Type Theme Vulnerable versions = 1.3 Fixed in 1.4 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-50434 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID ddf0621fd895 Credits tahu.datar Required privilege Unauthenticated...

7.5CVSS6.8AI score0.00443EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder