Lucene search
K

347 matches found

RedhatCVE
RedhatCVE
added 2025/12/24 10:29 p.m.5 views

CVE-2025-66212

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.451, an authenticated command injection vulnerability in the Dynamic Proxy Configuration Filename handling allows users with application/service management permissions t...

9.4CVSS9AI score0.0318EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/24 1:10 p.m.4 views

CVE-2025-68506 WordPress Docket Cache plugin <= 24.07.03 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Nawawi Jamili Docket Cache docket-cache allows PHP Local File Inclusion.This issue affects Docket Cache: from n/a through = 24.07.03...

8.1CVSS6.7AI score0.00412EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.5 views

WordPress plugin Docket Cache 安全漏洞

WordPress Docket Cache plugin is a tool that focuses on object caching acceleration to improve website performance. A file inclusion vulnerability exists in WordPress Docket Cache plugin, which stems from not effectively filtering calls to local file resources, and can be exploited by an attacker...

8.1CVSS6.2AI score0.00412EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.9 views

PT-2025-53099

Name of the Vulnerable Software and Affected Versions thembay Zota versions n/a through 1.3.14 Description An improper control of filename for include/require statement exists in thembay Zota, potentially allowing PHP Local File Inclusion. The issue involves the inclusion of files without proper...

9.8CVSS6.7AI score0.00329EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/23 10:0 p.m.3 views

CVE-2025-66211 Coolify Vulnerable to Authenticated Remote Code Execution via Command Injection in PostgreSQL Init Script Filename

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.451, an authenticated command injection vulnerability in PostgreSQL Init Script Filename handling allows users with application/service management permissions to execute...

9.4CVSS8.8AI score0.0376EPSS
Exploits2References4
EUVD
EUVD
added 2025/12/23 10:0 p.m.4 views

EUVD-2025-204957

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.451, an authenticated command injection vulnerability in PostgreSQL Init Script Filename handling allows users with application/service management permissions to execute...

9.4CVSS8.6AI score0.0376EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/12/23 12:0 a.m.15 views

PT-2025-52742

Name of the Vulnerable Software and Affected Versions TheGem Theme Elements for Elementor versions through 5.10.5.1 Description An issue exists in CodexThemes TheGem Theme Elements for Elementor related to improper control of filename for include/require statements, potentially leading to a PHP...

7.5CVSS7AI score0.00322EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/23 12:0 a.m.9 views

PT-2025-52747

Name of the Vulnerable Software and Affected Versions Thembay Nika versions through 1.2.14 Description The software contains a flaw due to improper control of filename handling for include/require statements, leading to a PHP Local File Inclusion issue. The vulnerability allows for the inclusion ...

7.5CVSS6.5AI score0.00306EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/12/19 7:32 a.m.4 views

CVE-2025-60049

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Soleil soleil allows PHP Local File Inclusion.This issue affects Soleil: from n/a through = 1.17...

8.1CVSS7.1AI score0.00415EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 9:30 a.m.5 views

EUVD-2025-204127

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes DetailX detailx allows PHP Local File Inclusion.This issue affects DetailX: from n/a through = 1.10.0...

8.1CVSS6.6AI score0.00415EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/18 9:30 a.m.2 views

EUVD-2025-204204

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Rally rally allows PHP Local File Inclusion.This issue affects Rally: from n/a through = 1.1...

8.1CVSS6.6AI score0.00415EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/18 9:30 a.m.4 views

EUVD-2025-204216

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes ChildHope childhope allows PHP Local File Inclusion.This issue affects ChildHope: from n/a through = 1.1.8...

8.1CVSS6.6AI score0.00415EPSS
Exploits0References2
NVD
NVD
added 2025/12/18 8:15 a.m.4 views

CVE-2025-58926

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Cerebrum cerebrum allows PHP Local File Inclusion.This issue affects Cerebrum: from n/a through = 1.12...

8.1CVSS0.00445EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/18 7:22 a.m.29 views

CVE-2025-64205 WordPress Jannah theme <= 7.6.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in TieLabs Jannah jannah allows PHP Local File Inclusion.This issue affects Jannah: from n/a through = 7.6.0...

8.1CVSS0.00344EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 7:22 a.m.4 views

EUVD-2025-204112

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jbhovik Ray Enterprise Translation lingotek-translation allows PHP Local File Inclusion.This issue affects Ray Enterprise Translation: from n/a through = 1.7.1...

7.5CVSS6.6AI score0.00349EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/18 7:22 a.m.25 views

CVE-2025-60066 WordPress Katelyn theme <= 1.0.10 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Katelyn katelyn allows PHP Local File Inclusion.This issue affects Katelyn: from n/a through = 1.0.10...

8.1CVSS0.00415EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/18 7:22 a.m.1 views

CVE-2025-60061 WordPress Kicker theme <= 2.2.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Kicker kicker allows PHP Local File Inclusion.This issue affects Kicker: from n/a through = 2.2.0...

8.1CVSS6.7AI score0.00415EPSS
Exploits0References1
CVE
CVE
added 2025/12/18 7:22 a.m.10 views

CVE-2025-60057

CVE-2025-60057 corresponds to a Local File Inclusion vulnerability in the WordPress DJ Rainflow theme (

8.1CVSS6.7AI score0.00415EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/18 7:22 a.m.2 views

CVE-2025-60055 WordPress Fabrica theme <= 1.8.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Fabrica fabrica allows PHP Local File Inclusion.This issue affects Fabrica: from n/a through = 1.8.1...

8.1CVSS6.7AI score0.00415EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/18 7:21 a.m.25 views

CVE-2025-58943 WordPress Agricola theme <= 1.1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Agricola agricola allows PHP Local File Inclusion.This issue affects Agricola: from n/a through = 1.1.0...

8.1CVSS0.00445EPSS
Exploits0References1
Rows per page
Query Builder