CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

8789 matches found

NVD•added 2025/11/06 4:16 p.m.•4 views

CVE-2025-60201

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in aguilatechnologies WP Customer Area customer-area allows PHP Local File Inclusion.This issue affects WP Customer Area: from n/a through = 8.3.5...

7.5CVSS0.00362EPSS

Exploits0References1

NVD•added 2025/11/06 4:16 p.m.•4 views

CVE-2025-60193

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Premmerce Premmerce User Roles premmerce-user-roles allows PHP Local File Inclusion.This issue affects Premmerce User Roles: from n/a through = 1.0.13...

7.5CVSS0.00362EPSS

Exploits0References1

NVD•added 2025/11/06 4:16 p.m.•3 views

CVE-2025-60197

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in owenr88 Simple Contact Forms simple-contact-forms allows PHP Local File Inclusion.This issue affects Simple Contact Forms: from n/a through = 1.6.4...

8.1CVSS0.0035EPSS

Exploits0References1

NVD•added 2025/11/06 4:15 p.m.•5 views

CVE-2025-48290

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in bslthemes Kinsley kinsley allows PHP Local File Inclusion.This issue affects Kinsley: from n/a through = 3.4.4...

8.1CVSS0.00431EPSS

Exploits0References1

OSV•added 2025/11/06 4:15 p.m.•2 views

CVE-2025-39466

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Dør dor allows PHP Local File Inclusion.This issue affects Dør: from n/a through = 2.4...

9.8CVSS5.8AI score

Exploits0References1

CVE•added 2025/11/06 3:56 p.m.•13 views

CVE-2025-64287

CVE-2025-64287 concerns WordPress Alloggio - Hotel Booking Theme (Alloggio) versions up to and including 1.8. The issue is an improper control of filenames used in include/require statements, allowing PHP Local File Inclusion (LFI). The vulnerability is described as affecting Alloggio - Hotel Boo...

8.1CVSS6.8AI score0.0035EPSS

Exploits0References1

Cvelist•added 2025/11/06 3:55 p.m.•8 views

CVE-2025-62075 WordPress Simple Payment plugin <= 2.4.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ido Kobelkowsky Simple Payment simple-payment.This issue affects Simple Payment: from n/a through = 2.4.6...

7.5CVSS0.00285EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•2 views

CVE-2025-62075 WordPress Simple Payment plugin <= 2.4.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ido Kobelkowsky Simple Payment simple-payment.This issue affects Simple Payment: from n/a through = 2.4.6...

7.5CVSS6.7AI score0.00285EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•3 views

CVE-2025-62067 WordPress Savory theme <= 2.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Savory savory.This issue affects Savory: from n/a through = 2.5...

8.1CVSS6.7AI score0.00347EPSS

Exploits0References1

CVE•added 2025/11/06 3:55 p.m.•11 views

CVE-2025-62067

CVE-2025-62067 is an Unauthenticated Local File Inclusion in the WordPress Savory theme (Savory) versions up to 2.5, caused by improper control of the filename in Include/Require statements. CVSS v3.1 base score 8.1 (HIGH) with high confidentiality and integrity impact, no availability impact. Co...

8.1CVSS6.7AI score0.00347EPSS

Exploits0References1

Cvelist•added 2025/11/06 3:55 p.m.•9 views

CVE-2025-62067 WordPress Savory theme <= 2.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Savory savory.This issue affects Savory: from n/a through = 2.5...

8.1CVSS0.00347EPSS

Exploits0References1

Cvelist•added 2025/11/06 3:55 p.m.•8 views

CVE-2025-62055 WordPress Academist theme < 1.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Academist academist.This issue affects Academist: from n/a through 1.3...

8.1CVSS0.00347EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•2 views

CVE-2025-62053 WordPress Houzez theme < 4.2.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in favethemes Houzez houzez.This issue affects Houzez: from n/a through 4.2.0...

8.1CVSS6.7AI score0.00347EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•2 views

CVE-2025-62045 WordPress TheGem Theme Elements (for WPBakery) plugin <= 5.10.5.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CodexThemes TheGem Theme Elements for WPBakery thegem-elements.This issue affects TheGem Theme Elements for WPBakery: from n/a through = 5.10.5.1...

8.1CVSS6.7AI score0.00433EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•2 views

CVE-2025-62014 WordPress ITok theme <= 1.1.42 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme ITok itok.This issue affects ITok: from n/a through = 1.1.42...

8.1CVSS6.7AI score0.0044EPSS

Exploits0References1

Cvelist•added 2025/11/06 3:55 p.m.•5 views

CVE-2025-62014 WordPress ITok theme <= 1.1.42 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme ITok itok.This issue affects ITok: from n/a through = 1.1.42...

8.1CVSS0.0044EPSS

Exploits0References1

CVE•added 2025/11/06 3:55 p.m.•9 views

CVE-2025-62014

The CVE-2025-62014 entry documents a Local File Inclusion vulnerability in the WordPress ITok theme (WordPress plugin) versions up to and including 1.1.42. The issue is described as improper control of the filename for include/require statements in PHP, enabling PHP Remote File Inclusion under th...

8.1CVSS6.7AI score0.0044EPSS

Exploits0References1

CVE•added 2025/11/06 3:55 p.m.•15 views

CVE-2025-60248

CVE-2025-60248 affects the WordPress plugin WPC Product Options for WooCommerce (WPClever) up to version 1.8.6. The issue is described as an improper control of filename for include/require statements, leading to PHP Local File Inclusion (LFI) via a PHP Remote File Inclusion vector. The CVSS vect...

7.5CVSS5.9AI score0.00396EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•3 views

CVE-2025-62010 WordPress Famita theme <= 1.54 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme Famita famita allows PHP Local File Inclusion.This issue affects Famita: from n/a through = 1.54...

8.1CVSS6.7AI score0.00431EPSS

Exploits0References1

CVE•added 2025/11/06 3:55 p.m.•7 views

CVE-2025-60241

The CVE-2025-60241 entry concerns the WordPress Premmerce plugin (versions up to 1.3.19) with an improper control of the filename in an include/require statement, resulting in a Local File Inclusion (LFI) vulnerability in Premmerce. Multiple connected sources (Red Hat, NVD/NIST, CVE lists, EUVD/E...

7.5CVSS6.7AI score0.00362EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by