CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8764 matches found

NVD•added 2026/03/13 7:54 p.m.•3 views

CVE-2026-32369

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Medilink-Core medilink-core allows PHP Local File Inclusion.This issue affects Medilink-Core: from n/a through 2.0.7...

7.5CVSS0.00381EPSS

Exploits0References1

Vulnrichment•added 2026/03/13 11:42 a.m.•3 views

CVE-2026-32426 WordPress Medilazar Core plugin < 1.4.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themelexus Medilazar Core medilazar-core allows PHP Local File Inclusion.This issue affects Medilazar Core: from n/a through 1.4.7...

5.8AI score0.00381EPSS

Exploits0References1

Cvelist•added 2026/03/13 11:42 a.m.•24 views

CVE-2026-32401 WordPress Client Invoicing by Sprout Invoices plugin <= 20.8.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BoldGrid Client Invoicing by Sprout Invoices sprout-invoices allows PHP Local File Inclusion.This issue affects Client Invoicing by Sprout Invoices: from n/a through = 20.8.9...

7.2CVSS0.00398EPSS

Exploits0References1

Cvelist•added 2026/03/13 11:42 a.m.•28 views

CVE-2026-32400 WordPress Boldman theme <= 7.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemetechMount Boldman boldman allows PHP Local File Inclusion.This issue affects Boldman: from n/a through = 7.7...

7.5CVSS0.00381EPSS

Exploits0References1

ATTACKERKB•added 2026/03/13 11:42 a.m.•3 views

CVE-2026-32400

5.8AI score0.00381EPSS

Exploits0References2

Cvelist•added 2026/03/13 11:42 a.m.•28 views

CVE-2026-32393 WordPress Greenly Theme Addons plugin < 8.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Greenly Theme Addons greenly-addons allows PHP Local File Inclusion.This issue affects Greenly Theme Addons: from n/a through 8.2...

7.5CVSS0.00381EPSS

Exploits0References1

Cvelist•added 2026/03/13 11:42 a.m.•28 views

CVE-2026-32392 WordPress Greenly theme <= 8.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Greenly greenly allows PHP Local File Inclusion.This issue affects Greenly: from n/a through = 8.1...

7.5CVSS0.00381EPSS

Exploits0References1

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32392

5.8AI score0.00381EPSS

Exploits0References2

Vulnrichment•added 2026/03/13 11:42 a.m.•2 views

CVE-2026-32393 WordPress Greenly Theme Addons plugin < 8.2 - Local File Inclusion vulnerability

5.8AI score0.00381EPSS

Exploits0References1

CVE•added 2026/03/13 11:42 a.m.•6 views

CVE-2026-32392

CVE-2026-32392 affects the WordPress Greenly theme (<= 8.1). The issue is an improper control of filename for PHP include/require, enabling PHP Local File Inclusion (LFI) due to PHP Remote File Inclusion behavior. Connected sources (Red Hat, NVD, CVE lists, EUVD) corroborate the same descripti...

7.5CVSS5.8AI score0.00381EPSS

Exploits0References1

Cvelist•added 2026/03/13 11:42 a.m.•22 views

CVE-2026-32384 WordPress WpBookingly plugin <= 1.2.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in magepeopleteam WpBookingly service-booking-manager allows PHP Local File Inclusion.This issue affects WpBookingly: from n/a through = 1.2.9...

7.5CVSS0.00381EPSS

Exploits0References1

CVE•added 2026/03/13 11:42 a.m.•7 views

CVE-2026-32384

CVE-2026-32384 describes an Improper Control of Filename for Include/Require Statement (PHP Local File Inclusion) in the WordPress plugin magepeopleteam WpBookingly service-booking-manager. Affected: WpBookingly versions up to 1.2.9. Underlying issue is local file inclusion via include/require th...

7.5CVSS5.8AI score0.00381EPSS

Exploits0References1

Cvelist•added 2026/03/13 11:42 a.m.•28 views

CVE-2026-32369 WordPress Medilink-Core plugin < 2.0.7 - Local File Inclusion vulnerability

7.5CVSS0.00381EPSS

Exploits0References1

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32369

5.8AI score0.00381EPSS

Exploits0References2

Vulnrichment•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32369 WordPress Medilink-Core plugin < 2.0.7 - Local File Inclusion vulnerability

5.8AI score0.00381EPSS

Exploits0References1

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32364

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in redqteam Turbo Manager turbo-manager allows PHP Local File Inclusion.This issue affects Turbo Manager: from n/a through 4.0.8...

5.8AI score0.00381EPSS

Exploits0References2

CVE•added 2026/03/13 11:42 a.m.•9 views

CVE-2026-32364

CVE-2026-32364 relates to a Local File Inclusion in the WordPress Turbo Manager plugin (turbo-manager) via an improper control of the filename for include/require statements in PHP. The vulnerability affects Turbo Manager versions earlier than 4.0.8. The underlying issue is an insecure handling o...

7.5CVSS5.8AI score0.00381EPSS

Exploits0References1

Positive Technologies•added 2026/03/13 12:0 a.m.•5 views

PT-2026-25239

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Creatives Planet Greenly Theme Addons greenly-addons allows PHP Local File Inclusion.This issue affects Greenly Theme Addons: from n/a through 8.2...

5.8AI score0.00381EPSS

Exploits0References4

Positive Technologies•added 2026/03/13 12:0 a.m.•3 views

PT-2026-25216

5.8AI score0.00381EPSS

Exploits0References3

Cvelist•added 2026/03/12 7:47 p.m.•27 views

CVE-2026-32274 Black: Arbitrary file writes from unsanitized user input in cache file name

Black is the uncompromising Python code formatter. Prior to 26.3.1, Black writes a cache file, the name of which is computed from various formatting options. The value of the --python-cell-magics option was placed in the filename without sanitization, which allowed an attacker who controls the...

8.7CVSS0.00424EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by