11 matches found
EUVD-2025-17550
Malicious code in bioql PyPI...
WordPress GrandPrix plugin path traversal vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A path traversal vulnerability exists in the WordPress GrandPrix plugin that stems from not doing effective filtering of local file resource calls, which can be exploited by an...
CVE-2025-49296
Path Traversal: '.../...//' vulnerability in Mikado-Themes GrandPrix grandprix allows PHP Local File Inclusion.This issue affects GrandPrix: from n/a through = 1.6...
CVE-2025-49296
Path Traversal: '.../...//' vulnerability in Mikado-Themes GrandPrix grandprix allows PHP Local File Inclusion.This issue affects GrandPrix: from n/a through = 1.6...
CVE-2025-49296
Path Traversal vulnerability in Mikado-Themes GrandPrix allows PHP Local File Inclusion. This issue affects GrandPrix: from n/a through 1.6...
CVE-2025-49296 WordPress GrandPrix theme <= 1.6 - Local File Inclusion Vulnerability
Path Traversal: '.../...//' vulnerability in Mikado-Themes GrandPrix grandprix allows PHP Local File Inclusion.This issue affects GrandPrix: from n/a through = 1.6...
CVE-2025-49296 WordPress GrandPrix <= 1.6 - Local File Inclusion Vulnerability
Path Traversal vulnerability in Mikado-Themes GrandPrix allows PHP Local File Inclusion. This issue affects GrandPrix: from n/a through 1.6...
CVE-2025-49296
CVE-2025-49296 describes a path traversal vulnerability in Mikado-Themes GrandPrix (WordPress GrandPrix theme) that allows PHP Local File Inclusion. The entry covers GrandPrix versions up to 1.6 and notes the vulnerability has a patched status, with remediation involving upgrading to a fixed vers...
WordPress GrandPrix theme <= 1.6 - Local File Inclusion Vulnerability
Local File Inclusion Vulnerability discovered by Bonds in WordPress Theme GrandPrix versions = 1.6...
WordPress GrandPrix Theme <= 1.6 is vulnerable to Local File Inclusion
Software GrandPrix Type Theme Vulnerable versions = 1.6 Fixed in 1.6.1 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-49296 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID c52f8c6d6e9e Credits Bonds Required privilege Unauthenticated Publishe...
WordPress plugin GrandPrix 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A path traversal vulnerability exists in the WordPress GrandPrix plugin that stems from not doing effective filtering of local file resource calls, which can be exploited by an...