Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-29676

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.00578EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-9853

Malicious code in bioql PyPI...

7.5CVSS8.2AI score0.00829EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/19 2:22 a.m.16 views

CVE-2025-10143

The Catch Dark Mode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.0 via the 'catchdarkmode' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary .php files on t...

7.5CVSS7AI score0.00578EPSS
Exploits0References1
CNVD
CNVD
added 2025/09/19 12:0 a.m.4 views

WordPress Catch Dark Mode plugin file inclusion vulnerability

WordPress Catch Dark Mode plugin is an official plugin for enabling dark mode in WordPress websites, offering a wide range of customization options and pre-built theme solutions. The WordPress Catch Dark Mode plugin suffers from a file inclusion vulnerability that stems from a local file inclusio...

7.5CVSS7.2AI score0.00578EPSS
Exploits0References1
NVD
NVD
added 2025/09/17 2:15 a.m.7 views

CVE-2025-10143

The Catch Dark Mode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.0 via the 'catchdarkmode' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary .php files on t...

7.5CVSS0.00578EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/17 1:49 a.m.8 views

CVE-2025-10143 Catch Dark Mode <= 2.0 - Authenticated (Contributor+) Local File Inclusion

The Catch Dark Mode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.0 via the 'catchdarkmode' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary .php files on t...

7.5CVSS0.00578EPSS
Exploits0References4
CVE
CVE
added 2025/09/17 1:49 a.m.22 views

CVE-2025-10143

CVE-2025-10143 affects the WordPress plugin Catch Dark Mode. All versions up to and including 2.0 are vulnerable to Local File Inclusion via the catch_dark_mode shortcode, allowing authenticated users with Contributor-level access or higher to include and execute arbitrary PHP files on the server...

7.5CVSS6.8AI score0.00578EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/17 12:0 a.m.6 views

WordPress plugin Catch Dark Mode 安全漏洞

WordPress Catch Dark Mode plugin is an official plugin for enabling dark mode in WordPress websites, offering a wide range of customization options and pre-built theme solutions. The WordPress Catch Dark Mode plugin suffers from a file inclusion vulnerability that stems from a local file inclusio...

7.5CVSS7.1AI score0.00578EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/09/16 10:27 p.m.7 views

WordPress Catch Dark Mode plugin <= 2.0 - Authenticated (Contributor+) Local File Inclusion vulnerability

Authenticated Contributor+ Local File Inclusion vulnerability discovered by zaim in WordPress Plugin Catch Dark Mode versions = 2.0...

7.5CVSS6.7AI score0.00578EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/04/06 4:27 p.m.10 views

CVE-2025-32154

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Catch Themes Catch Dark Mode catch-dark-mode allows PHP Local File Inclusion.This issue affects Catch Dark Mode: from n/a through = 2.0.1...

8.8CVSS7.2AI score0.00829EPSS
Exploits0References1
NVD
NVD
added 2025/04/04 4:15 p.m.7 views

CVE-2025-32154

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Catch Themes Catch Dark Mode catch-dark-mode allows PHP Local File Inclusion.This issue affects Catch Dark Mode: from n/a through = 2.0.1...

8.8CVSS0.00829EPSS
Exploits0References1
OSV
OSV
added 2025/04/04 4:15 p.m.2 views

CVE-2025-32154

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Catch Themes Catch Dark Mode allows PHP Local File Inclusion. This issue affects Catch Dark Mode: from n/a through 1.2.1...

8.8CVSS7.3AI score0.00829EPSS
Exploits0References1
CVE
CVE
added 2025/04/04 3:58 p.m.56 views

CVE-2025-32154

CVE-2025-32154 affects Catch Dark Mode (WordPress plugin) and is an Authenticated Local File Inclusion via improper filename control in PHP include/require. Affected version range is Catch Dark Mode up to 1.2.1. The vulnerability is documented with a high impact (C, I, A) and a network attack vec...

8.8CVSS7.2AI score0.00829EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/04 3:58 p.m.12 views

CVE-2025-32154 WordPress Catch Dark Mode plugin <= 2.0.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Catch Themes Catch Dark Mode catch-dark-mode allows PHP Local File Inclusion.This issue affects Catch Dark Mode: from n/a through = 2.0.1...

7.5CVSS7.3AI score0.00829EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/04 3:58 p.m.14 views

CVE-2025-32154 WordPress Catch Dark Mode plugin <= 2.0.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Catch Themes Catch Dark Mode catch-dark-mode allows PHP Local File Inclusion.This issue affects Catch Dark Mode: from n/a through = 2.0.1...

7.5CVSS0.00829EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/04 12:0 a.m.5 views

PT-2025-14940

Name of the Vulnerable Software and Affected Versions Catch Dark Mode versions 1.2.1 and earlier Description The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability. This allows PHP Local File...

8.8CVSS8.4AI score0.00829EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/04/04 12:0 a.m.4 views

WordPress plugin Catch Dark Mode 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

7.5CVSS7.8AI score0.00829EPSS
Exploits0References1
Rows per page
Query Builder