CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

8767 matches found

Cvelist•added 2026/02/20 3:46 p.m.•22 views

CVE-2025-69387 WordPress Simple Retail Menus plugin <= 4.2.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in whatwouldjessedo Simple Retail Menus simple-retail-menus allows PHP Local File Inclusion.This issue affects Simple Retail Menus: from n/a through = 4.2.1...

7.5CVSS0.00339EPSS

Exploits0References1

CVE•added 2026/02/20 3:46 p.m.•8 views

CVE-2025-69387

CVE-2025-69387 concerns the WordPress plugin Simple Retail Menus (plugin slug: simple-retail-menus) with affected versions

7.5CVSS5.6AI score0.00339EPSS

Exploits0References1

CVE•added 2026/02/20 3:46 p.m.•8 views

CVE-2025-69383

CVE-2025-69383 affects the WordPress plugin WP shop (wpshop) for isssueed versions up to and including 2.6.1. The vulnerability is an Unauthenticated Local File Inclusion caused by an improper control of filename for include/require statements . This can enable an attacker to include local files....

7.5CVSS5.5AI score0.00339EPSS

Exploits0References1

Cvelist•added 2026/02/20 3:46 p.m.•23 views

CVE-2025-69383 WordPress WP shop plugin <= 2.6.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Agence web Eoxia - Montpellier WP shop wpshop allows PHP Local File Inclusion.This issue affects WP shop: from n/a through = 2.6.1...

7.5CVSS0.00339EPSS

Exploits0References1

CVE•added 2026/02/20 3:46 p.m.•10 views

CVE-2025-69375

CVE-2025-69375 is a Local File Inclusion vulnerability in the WordPress Portfolio Builder (swp-portfolio) plugin. The issue is described as improper control of filename for include/require statements, enabling PHP Local File Inclusion. Affected versions are Portfolio Builder up to and including 1...

8.1CVSS5.6AI score0.00549EPSS

Exploits0References1

Cvelist•added 2026/02/20 3:46 p.m.•22 views

CVE-2025-69375 WordPress Portfolio Builder plugin <= 1.2.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in SolverWp Portfolio Builder swp-portfolio allows PHP Local File Inclusion.This issue affects Portfolio Builder: from n/a through = 1.2.5...

8.1CVSS0.00549EPSS

Exploits0References1

Vulnrichment•added 2026/02/20 3:46 p.m.•3 views

CVE-2025-69375 WordPress Portfolio Builder plugin <= 1.2.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in SolverWp Portfolio Builder swp-portfolio allows PHP Local File Inclusion.This issue affects Portfolio Builder: from n/a through = 1.2.5...

5.4AI score0.00549EPSS

Exploits0References1

CVE•added 2026/02/20 3:46 p.m.•7 views

CVE-2025-69373

CVE-2025-69373 is a local-file-include vulnerability in the WordPress VidoRev theme (vidorev) affecting versions up to 2.9.9.9.9.9.7. Descriptions across sources indicate an Improper Control of Filename for Include/Require in PHP (PHP Remote File Inclusion) enabling PHP Local File Inclusion. Publ...

7.5CVSS5.6AI score0.00397EPSS

Exploits0References1

CVE•added 2026/02/20 3:46 p.m.•10 views

CVE-2025-69322

CVE-2025-69322 concerns the PeakShops WordPress theme (pre-1.5.9). It is a PHP Local File Inclusion due to improper handling of include/require filenames, enabling local file inclusion. Red Hat and NVD records corroborate the description; the issue affects PeakShops

8.1CVSS5.5AI score0.00512EPSS

Exploits0References1

Cvelist•added 2026/02/20 3:46 p.m.•20 views

CVE-2025-69322 WordPress PeakShops theme < 1.5.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes PeakShops peakshops allows PHP Local File Inclusion.This issue affects PeakShops: from n/a through 1.5.9...

8.1CVSS0.00512EPSS

Exploits0References1

Cvelist•added 2026/02/20 3:46 p.m.•21 views

CVE-2025-68841 WordPress TopperPack – Complete Elementor Addons, theme & CPT Builder plugin <= 1.2.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Themepul TopperPack – Complete Elementor Addons, Theme & CPT Builder topper-pack allows PHP Local File Inclusion.This issue affects TopperPack – Complete Elementor Addons, Theme ...

7.5CVSS0.0037EPSS

Exploits0References1

Vulnrichment•added 2026/02/20 3:46 p.m.•1 views

CVE-2025-68545 WordPress Nika theme <= 1.2.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Nika nika allows PHP Local File Inclusion.This issue affects Nika: from n/a through = 1.2.14...

8.1CVSS5.9AI score0.00504EPSS

Exploits0References1

CVE•added 2026/02/20 3:46 p.m.•7 views

CVE-2025-68552

CVE-2025-68552 is a Local File Inclusion (LFI) vulnerability in the WordPress plugin WooCommerce Coming Soon Product with Countdown (aka woo-coming-soon-product). Connected sources confirm the flaw is due to improper control of filenames used in PHP include/require, enabling PHP LFI. The affected...

7.5CVSS5.5AI score0.0047EPSS

Exploits0References1

CVE•added 2026/02/20 3:46 p.m.•9 views

CVE-2025-68545

CVE-2025-68545 is a Local File Inclusion vulnerability in the WordPress Nika theme (thembay Nika) affecting versions up to and including 1.2.14, caused by improper control of filenames in include/require statements. The issue is categorized as a PHP Local File Inclusion vulnerability (also descri...

8.1CVSS5.6AI score0.00504EPSS

Exploits0References1

Cvelist•added 2026/02/20 3:46 p.m.•22 views

CVE-2025-68545 WordPress Nika theme <= 1.2.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Nika nika allows PHP Local File Inclusion.This issue affects Nika: from n/a through = 1.2.14...

8.1CVSS0.00504EPSS

Exploits0References1

Vulnrichment•added 2026/02/20 3:46 p.m.•2 views

CVE-2025-68543 WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Diza diza allows PHP Local File Inclusion.This issue affects Diza: from n/a through = 1.3.15...

5.5AI score0.00561EPSS

Exploits0References1

Cvelist•added 2026/02/20 3:46 p.m.•21 views

CVE-2025-68536 WordPress Zota theme <= 1.3.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Zota zota allows PHP Local File Inclusion.This issue affects Zota: from n/a through = 1.3.14...

8.1CVSS0.00512EPSS

Exploits0References1

Vulnrichment•added 2026/02/20 3:46 p.m.•1 views

CVE-2025-68539 WordPress Fana theme <= 1.1.35 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Fana fana allows PHP Local File Inclusion.This issue affects Fana: from n/a through = 1.1.35...

5.5AI score0.00512EPSS

Exploits0References1

CVE•added 2026/02/20 3:46 p.m.•8 views

CVE-2025-68539

CVE-2025-68539 affects the WordPress theme Fana (thembay) up to version 1.1.35, with an Unauthenticated Local File Inclusion due to improper control of include/require filenames. Public sources (NVD/Red Hat/Patchstack/Wordfence) enumerate Fana

8.1CVSS5.6AI score0.00512EPSS

Exploits0References1

Vulnrichment•added 2026/02/20 3:46 p.m.•3 views

CVE-2025-68536 WordPress Zota theme <= 1.3.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Zota zota allows PHP Local File Inclusion.This issue affects Zota: from n/a through = 1.3.14...

5.5AI score0.00512EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by