CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

89 matches found

CVE•added 2025/08/20 8:3 a.m.•15 views

CVE-2025-48149

CVE-2025-48149 affects the WordPress Cook&Meal theme (versions

8.1CVSS5.9AI score0.00158EPSS

Exploits0References1

ATTACKERKB•added 2025/06/27 12:15 p.m.•2 views

CVE-2025-28946

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme PrintXtore allows PHP Local File Inclusion.This issue affects PrintXtore: from n/a before 1.7.8...

8.1CVSS5.8AI score0.00547EPSS

Exploits0References2

ATTACKERKB•added 2025/06/09 4:15 p.m.•1 views

CVE-2025-27362

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme Petito allows PHP Local File Inclusion.This issue affects Petito: from n/a before 1.6.6...

8.1CVSS5.8AI score0.00547EPSS

Exploits0References2

ATTACKERKB•added 2025/03/27 11:15 a.m.•1 views

CVE-2025-30871

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel Engine WP Travel Engine wp-travel-engine allows PHP Local File Inclusion.This issue affects WP Travel Engine: from n/a through = 6.3.5...

7.5CVSS7.2AI score0.01146EPSS

Exploits0References3

CNNVD•added 2025/02/24 12:0 a.m.•1 views

WordPress plugin VG PostCarousel 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

7.5CVSS8.4AI score0.00852EPSS

Exploits0References2

Positive Technologies•added 2025/01/22 12:0 a.m.•2 views

PT-2025-5226 · Unknown · Mihajlovic Nenad Improved Sale Badges

Name of the Vulnerable Software and Affected Versions: Mihajlovic Nenad Improved Sale Badges – Free Version versions 1.0.1 and earlier Description: The issue is related to improper control of filename for include/require statement in PHP program, also known as PHP Remote File Inclusion, which...

8.1CVSS9.6AI score0.01606EPSS

Exploits0References3

OSV•added 2024/11/18 3:15 p.m.•0 views

CVE-2024-52428

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Scripteo Ads Booster by Ads Pro allows PHP Local File Inclusion.This issue affects Ads Booster by Ads Pro: from n/a through 1.12...

9.8CVSS5.8AI score0.06414EPSS

Exploits0References1

Positive Technologies•added 2024/10/28 12:0 a.m.•1 views

PT-2024-34210

Name of the Vulnerable Software and Affected Versions: Theme Horse Meta News versions 1.1.7 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion'. This is a type of vulnerability whe...

8.8CVSS7.2AI score0.02261EPSS

Exploits0References4

CNNVD•added 2024/06/10 12:0 a.m.•1 views

WordPress plugin MelaPress Login Security security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

7.2CVSS6.8AI score0.0038EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by