CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

Schneier on Security•added 2026/01/13 12:9 p.m.•2 views

1980s Hacker Manifesto

Forty years ago, The Mentor--Loyd Blankenship--published "The Conscience of a Hacker" in Phrack. You bet your ass we're all alike… we've been spoon-fed baby food at school when we hungered for steak… the bits of meat that you did let slip through were pre-chewed and tasteless. We've been dominate...

6.9AI score

Exploits0

RedhatCVE•added 2025/12/19 7:33 a.m.•1 views

CVE-2025-58923

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Critique critique allows PHP Local File Inclusion.This issue affects Critique: from n/a through = 1.17...

8.1CVSS7.1AI score0.0011EPSS

Exploits0References1

EUVD•added 2025/12/18 9:30 a.m.•1 views

EUVD-2025-204171

8.1CVSS6.6AI score0.0011EPSS

Exploits0References2

OSV•added 2025/12/18 8:15 a.m.•1 views

CVE-2025-58923

8.1CVSS5.8AI score

Exploits0References1

NVD•added 2025/12/18 8:15 a.m.•0 views

CVE-2025-58923

8.1CVSS0.0011EPSS

Exploits0References1

Vulnrichment•added 2025/12/18 7:21 a.m.•1 views

CVE-2025-58923 WordPress Critique theme <= 1.17 - Local File Inclusion vulnerability

6.7AI score0.0011EPSS

Exploits0References1

Cvelist•added 2025/12/18 7:21 a.m.•19 views

CVE-2025-58923 WordPress Critique theme <= 1.17 - Local File Inclusion vulnerability

8.1CVSS0.0011EPSS

Exploits0References1

CVE•added 2025/12/18 7:21 a.m.•7 views

CVE-2025-58923

The CVE-2025-58923 entry concerns the WordPress Critique theme (vulnerability until and including v1.17) with a Local File Inclusion flaw caused by improper control of the filename for include/require statements. Connected sources (PatchStack/PT-2025-52075, Red Hat/EUVD/NVD mirrors) confirm the a...

8.1CVSS6.7AI score0.0011EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/12/18 12:0 a.m.•1 views

PT-2025-52075

Name of the Vulnerable Software and Affected Versions axiomthemes Critique versions through 1.17 Description A flaw exists in axiomthemes Critique that allows for PHP Local File Inclusion due to an improper control of filename for include/require statement. This issue is related to a 'PHP Remote...

8.1CVSS6.7AI score0.0011EPSS

Exploits0References3

CNNVD•added 2025/12/18 12:0 a.m.•1 views

WordPress plugin Critique 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

8.1CVSS6.6AI score0.0011EPSS

Exploits0References1

Patchstack•added 2025/09/02 12:24 p.m.•2 views

WordPress Critique theme <= 1.17 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Critique versions = 1.17...

8.1CVSS7AI score0.0011EPSS

Exploits0Affected Software1

Cvelist•added 2025/05/05 7:32 p.m.•11 views

CVE-2025-46730 Mobile Security Framework (MobSF) Allows Web Server Resource Exhaustion via ZIP of Death Attack

MobSF is a mobile application security testing tool used. Typically, MobSF is deployed on centralized internal or cloud-based servers that also host other security tools and web applications. Access to the MobSF web interface is often granted to internal security teams, audit teams, and external...

6.8CVSS0.00306EPSS

Exploits1References2

FireEye•added 2020/07/29 12:0 a.m.•37 views

'Ghostwriter' Influence Campaign: Unknown Actors Leverage Website Compromises and Fabricated Content to Push Narratives Aligned With Russian Security Interests

Mandiant Threat Intelligence has tied together several information operations that we assess with moderate confidence comprise part of a broader influence campaign—ongoing since at least March 2017—aligned with Russian security interests. The operations have primarily targeted audiences in...

2AI score

Exploits0References1

Schneier on Security•added 2019/01/25 12:8 p.m.•215 views

Hacking the GCHQ Backdoor

Last week, I evaluated the security of a recent GCHQ backdoor proposal for communications systems. Furthering the debate, Nate Cardozo and Seth Schoen of EFF explain how this sort of backdoor can be detected: In fact, we think when the ghost feature is active -- silently inserting a secret...

0.1AI score

Exploits0

Schneier on Security•added 2017/10/23 11:16 a.m.•37 views

Hacking Back

Hacking back is a terrible idea that just will not die. Josephine Wolff takes apart the new hacking back bill that was introduced in the House recently...

6.9AI score

Exploits0

ThreatPost•added 2016/03/17 3:7 p.m.•7 views

Mitre Tackles Its Critics: Set To Revamp CVE Vulnerability Reporting

Mitre Corporation will introduce a new pilot program for classifying Common Vulnerabilities and Exposures CVE in the coming weeks. The move is in response to a backlash in the security community where some critics contend Mitre is failing to keep pace with a massive influx in the number of report...

7.1AI score

Exploits0References2

The Hacker News•added 2011/07/03 1:43 a.m.•4 views

UP Rajarshi Tandon Open University Allahabad Website Hacked

UP Rajarshi Tandon Open University Allahabad Website Hacked Website of UP Rajarshi Tandon Open University Allahabad Hacked last night. Link https://www.uprtou.ac.in/ Hacker wrote message on the site "SECURE YOUR WEBSITE.. OR ELSE GET HACKED BY SOMEONE...The Education system in India sucks.. Till...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by