Lucene search
+L

256 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.5 views

The vulnerability of the channel.c component in the Linux operating system’s kernel allows a hacker to gain access to confidential data.

The vulnerability of the channel.c component in the Linux operating system’s kernel is related to improper control of resource identifiers. Exploiting this vulnerability can allow an attacker to access confidential data...

5.5CVSS6.1AI score0.00225EPSS
Exploits0References12Affected Software5
Positive Technologies
Positive Technologies
added 2025/06/27 12:0 a.m.7 views

PT-2025-27096 · Unknown · Thembay Puca

Name of the Vulnerable Software and Affected Versions: thembay Puca versions n/a through 2.6.33 Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusion. This...

8.1CVSS7.5AI score0.00489EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/06/27 12:0 a.m.4 views

PT-2025-27166 · Nicdark · Nicdark Hotel Booking

Name of the Vulnerable Software and Affected Versions: nicdark Hotel Booking versions n/a through 3.7 Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusion...

7.5CVSS7AI score0.00488EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/26 12:37 a.m.7 views

CVE-2025-6534

A vulnerability, which was classified as problematic, was found in xxyopen/201206030 novel-plus up to 5.1.3. This affects the function remove of the file novel-admin/src/main/java/com/java2nb/common/controller/FileController.java of the component File Handler. The manipulation leads to improper...

6.8CVSS7.1AI score0.00393EPSS
Exploits1References1
NVD
NVD
added 2025/06/24 1:15 a.m.5 views

CVE-2025-6534

A vulnerability, which was classified as problematic, was found in xxyopen/201206030 novel-plus up to 5.1.3. This affects the function remove of the file novel-admin/src/main/java/com/java2nb/common/controller/FileController.java of the component File Handler. The manipulation leads to improper...

6.8CVSS0.00393EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/06/24 12:0 a.m.6 views

PT-2025-26657 · Unknown · Novel-Plus

Name of the Vulnerable Software and Affected Versions: xxyopen/201206030 novel-plus versions through 5.1.3 Description: A problematic issue exists due to improper control of resource identifiers. This issue affects the remove function within the...

6.8CVSS4.3AI score0.00393EPSS
Exploits1References9
Cvelist
Cvelist
added 2025/06/19 8:57 p.m.15 views

CVE-2025-6384 Improper Control of Dynamically-Managed Code Resources in Crafter Studio

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of CrafterCMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass. By inserting malicious Groovy elements, an attacker may bypass Sandbox restrictions and obtain RCE Remote Code...

7.3CVSS0.00852EPSS
Exploits1References1
NVD
NVD
added 2025/06/17 3:15 p.m.5 views

CVE-2025-29002

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme Simen snssimen allows PHP Local File Inclusion.This issue affects Simen: from n/a through = 4.6...

8.1CVSS0.0049EPSS
Exploits0References1
NVD
NVD
added 2025/06/17 3:15 p.m.8 views

CVE-2025-24761

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme DSK dsk allows PHP Local File Inclusion.This issue affects DSK: from n/a through 2.4...

8.1CVSS0.00489EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/17 3:1 p.m.11 views

CVE-2025-49253 WordPress Lasa theme <= 1.1 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Lasa lasa allows PHP Local File Inclusion.This issue affects Lasa: from n/a through = 1.1...

8.1CVSS0.00397EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/17 3:1 p.m.12 views

CVE-2025-49256 WordPress Sapa theme <= 1.1.14 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Sapa sapa allows PHP Local File Inclusion.This issue affects Sapa: from n/a through = 1.1.14...

8.1CVSS0.00397EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/17 3:1 p.m.10 views

CVE-2025-49260 WordPress Aora theme <= 1.3.9 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Aora aora allows PHP Local File Inclusion.This issue affects Aora: from n/a through = 1.3.9...

8.1CVSS0.00496EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/17 12:0 a.m.6 views

PT-2025-25714 · Unknown · Loftocean Cozystay

Name of the Vulnerable Software and Affected Versions: LoftOcean CozyStay affected versions not specified Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File...

8.1CVSS7.9AI score0.00397EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/17 12:0 a.m.5 views

PT-2025-25696 · Unknown · Thembay Nika

Name of the Vulnerable Software and Affected Versions: thembay Nika versions 1.2.8 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability, which allows PHP Local File...

8.1CVSS8AI score0.00397EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/11 4:3 p.m.9 views

CVE-2025-28992

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme SNS Anton snsanton allows PHP Local File Inclusion.This issue affects SNS Anton: from n/a through = 4.1...

8.1CVSS7.2AI score0.00519EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/11 1:20 p.m.16 views

Security Bulletin: IBM Security QRadar EDR Software contains multiple vulnerabilities

Summary IBM Security QRadar EDR Software includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. These have been addressed in the update. Vulnerability Details CVEID:CVE-2024-53382 DESCRIPTION: Prism aka PrismJS through 1.29.0 allows D...

9.1CVSS9.6AI score0.02186EPSS
Exploits3Affected Software1
NVD
NVD
added 2025/06/09 4:15 p.m.9 views

CVE-2025-32595

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in gavias Krowd krowd allows PHP Local File Inclusion.This issue affects Krowd: from n/a through 1.5.0...

8.1CVSS0.00535EPSS
Exploits0References1
NVD
NVD
added 2025/06/09 4:15 p.m.5 views

CVE-2025-28944

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme Avaz snsavaz allows PHP Local File Inclusion.This issue affects Avaz: from n/a through = 2.8...

8.1CVSS0.00519EPSS
Exploits0References1
NVD
NVD
added 2025/06/09 4:15 p.m.4 views

CVE-2023-26005

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme Fitrush allows PHP Local File Inclusion. This issue affects Fitrush: from n/a through 1.3.4...

8.1CVSS0.00519EPSS
Exploits0References1
CVE
CVE
added 2025/06/09 3:53 p.m.49 views

CVE-2025-49281

CVE-2025-49281: Unfoldwp Magways WordPress theme (Magways) &lt;= 1.2.1 suffers an improper filename control in PHP Include/Require, enabling Local File Inclusion. Public sources (NVD/Red Hat/patchstack/Wordfence) list CVSS v3.1 base score 8.1 (HIGH) with network attack vector, high impact on conf...

8.1CVSS5.9AI score0.00397EPSS
Exploits0References1
Rows per page
Query Builder