Lucene search
K

254 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:13 a.m.4 views

CVE-2023-22960

Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency...

7.5CVSS7AI score0.27766EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:41 a.m.5 views

CVE-2023-23645

Improper Control of Generation of Code 'Code Injection' vulnerability in MainWP MainWP Code Snippets Extension allows Code Injection.This issue affects MainWP Code Snippets Extension: from n/a through 4.0.2...

9.9CVSS6.9AI score0.00975EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/23 12:0 a.m.3 views

PT-2025-22713 · Nasa Core · Nasa Core

Name of the Vulnerable Software and Affected Versions: Nasa Core versions through 6.3.2 Description: The issue affects Nasa Core due to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', allowing PHP Local File Inclusion...

8.1CVSS8.2AI score0.00669EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/21 6:17 p.m.5 views

CVE-2025-26735

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Candid themes Grip.This issue affects Grip: from n/a through 1.0.9...

7.5CVSS8AI score0.00467EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/16 12:0 a.m.6 views

PT-2025-21701 · Nasa Core · Nasa Core

Name of the Vulnerable Software and Affected Versions: Nasa Core versions through 6.3.2 Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusion...

8.8CVSS8AI score0.00673EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/05/07 2:20 p.m.5 views

CVE-2025-47531 WordPress XT Event Widget for Social Events plugin <= 1.1.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Xylus Themes XT Event Widget for Social Events xt-facebook-events allows PHP Local File Inclusion.This issue affects XT Event Widget for Social Events: from n/a through = 1.1.7...

7.5CVSS8.7AI score0.00549EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 2:19 p.m.14 views

CVE-2025-47439 WordPress Download Monitor plugin <= 5.0.22 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Chill Download Monitor download-monitor allows PHP Local File Inclusion.This issue affects Download Monitor: from n/a through = 5.0.22...

7.5CVSS0.0069EPSS
Exploits0References1
OSV
OSV
added 2025/05/02 12:15 p.m.8 views

CVE-2025-2421

Improper Control of Generation of Code 'Code Injection' vulnerability in Profelis Informatics SambaBox allows Code Injection.This issue affects SambaBox: before 5.1...

9.8CVSS5.8AI score0.00504EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/25 3:45 p.m.18 views

CVE-2025-39526

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through = 3.6...

8.1CVSS7.2AI score0.00592EPSS
Exploits0References1
NVD
NVD
added 2025/04/24 4:15 p.m.11 views

CVE-2025-39378

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Holest Engineering Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light excel-like-price-change-for-woocommerce-and-wp-e-commerce-light allows PHP Local File...

7.5CVSS0.00611EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/17 3:17 p.m.16 views

CVE-2025-39429 WordPress Széchenyi 2020 Logo <= 1.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Földesi, Mihály Széchenyi 2020 Logo szechenyi-2020-logo allows PHP Local File Inclusion.This issue affects Széchenyi 2020 Logo: from n/a through = 1.1...

7.5CVSS0.00629EPSS
Exploits0References1
CVE
CVE
added 2025/04/16 10:23 p.m.62 views

CVE-2025-0756

Hitachi Vantara Pentaho Data Integration & Analytics versions prior to 10.2.0.2 (including 9.3.x and 8.3.x) do not restrict JNDI identifiers when creating platform data sources, enabling untrusted input to be used as resource identifiers. This can lead to access to, or modification of, sensitive ...

9.1CVSS9.6AI score0.00875EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/15 12:0 a.m.6 views

PT-2025-16317 · Unknown · Notfound Coming Soon

Name of the Vulnerable Software and Affected Versions: NotFound Coming Soon, Maintenance Mode versions n/a through 1.1.1 Description: The issue is related to Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability. This...

7.5CVSS7.9AI score0.0051EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/04/13 9:20 a.m.16 views

CVE-2025-32614

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ashan Perera EventON eventon-lite allows PHP Local File Inclusion.This issue affects EventON: from n/a through = 2.4...

8.8CVSS7.2AI score0.01833EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/11 12:0 a.m.5 views

Palo Alto Networks Prisma Access Browser 安全漏洞

Palo Alto Networks Prisma Access Browser is an enterprise security browser from Palo Alto Networks, USA. A security vulnerability exists in Palo Alto Networks Prisma Access Browser that stems from improper control behavior...

9.3CVSS6.7AI score0.00162EPSS
Exploits0References2
CVE
CVE
added 2025/04/09 4:9 p.m.58 views

CVE-2025-32692

CVE-2025-32692: WP Subscription Forms (WordPress) =1.2.4) or apply vendor fix; monitor for advisories.

7.5CVSS7.2AI score0.00778EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/04 3:58 p.m.9 views

CVE-2025-32156 WordPress Just Post Preview Widget plugin <= 1.1.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Alex Prokopenko / JustCoded Just Post Preview Widget just-post-preview allows PHP Local File Inclusion.This issue affects Just Post Preview Widget: from n/a through = 1.1.1...

7.5CVSS7.2AI score0.0103EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/03/15 12:0 a.m.3 views

PT-2025-11362

Name of the Vulnerable Software and Affected Versions: Ohio Extra versions n/a through 3.4.7 Description: The issue is related to an Improper Control of Generation of Code, also known as 'Code Injection', which allows for code injection in Ohio Extra. Recommendations: For versions n/a through...

6.5CVSS6.9AI score0.00237EPSS
Exploits0References8
NVD
NVD
added 2025/03/10 3:15 p.m.5 views

CVE-2025-26933

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Nitin Prakash WC Place Order Without Payment wc-place-order-without-payment allows PHP Local File Inclusion.This issue affects WC Place Order Without Payment: from n/a through =...

7.5CVSS0.00517EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:18 a.m.8 views

CVE-2024-56051

Improper Control of Generation of Code 'Code Injection' vulnerability in VibeThemes WPLMS wplmsplugin allows Code Injection.This issue affects WPLMS: from n/a through 1.9.9.5...

8.8CVSS7.2AI score0.00441EPSS
Exploits0References1
Rows per page
Query Builder