CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

RedhatCVE•added 2026/02/21 7:29 p.m.•3 views

CVE-2026-22381

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme pawfriends allows PHP Local File Inclusion.This issue affects PawFriends - Pet Shop and Veterinary WordPress...

8.1CVSS5.5AI score0.00327EPSS

Exploits0References1

RedhatCVE•added 2026/02/21 7:29 p.m.•4 views

CVE-2026-22383

Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme pawfriends allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PawFriends - Pet Shop and Veterinary WordPress Theme: from n/a...

7.5CVSS5.5AI score0.00271EPSS

Exploits0References1

NVD•added 2026/02/20 4:22 p.m.•10 views

CVE-2026-22381

8.1CVSS0.00327EPSS

Exploits0References1

NVD•added 2026/02/20 4:22 p.m.•4 views

CVE-2026-22383

7.5CVSS0.00271EPSS

Exploits0References1

Vulnrichment•added 2026/02/20 3:47 p.m.•5 views

CVE-2026-22383 WordPress PawFriends - Pet Shop and Veterinary WordPress theme theme <= 1.3 - Insecure Direct Object References (IDOR) vulnerability

7.5CVSS5.4AI score0.00271EPSS

Exploits0References1

ATTACKERKB•added 2026/02/20 3:47 p.m.•5 views

CVE-2026-22381

5.5AI score0.00327EPSS

Exploits0References2

Vulnrichment•added 2026/02/20 3:47 p.m.•6 views

CVE-2026-22381 WordPress PawFriends - Pet Shop and Veterinary WordPress Theme theme <= 1.3 - Local File Inclusion vulnerability

8.1CVSS5.5AI score0.00327EPSS

Exploits0References1

ATTACKERKB•added 2026/02/20 3:47 p.m.•2 views

CVE-2026-22383

7.5CVSS5.4AI score0.00271EPSS

Exploits0References2

CVE•added 2026/02/20 3:47 p.m.•15 views

CVE-2026-22383

CVE-2026-22383 is an Insecure Direct Object References (IDOR)/authorization bypass vulnerability in Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme, affecting versions up to and including 1.3. The issue arises from a user-controlled key and misconfigured access control, enablin...

7.5CVSS5.5AI score0.00271EPSS

Exploits0References1

CVE•added 2026/02/20 3:47 p.m.•9 views

CVE-2026-22381

CVE-2026-22381 relates to Mikado-Themes PawFriends (WordPress theme) and is a local file inclusion (LFI) vulnerability caused by improper control of filenames in PHP include/require statements. Affected: PawFriends theme versions up to and including 1.3. The issue enables including local files du...

8.1CVSS5.5AI score0.00327EPSS

Exploits0References1

Positive Technologies•added 2026/02/20 12:0 a.m.•4 views

PT-2026-21225

Name of the Vulnerable Software and Affected Versions Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme versions through 1.3 Description An authorization bypass exists due to user-controlled key vulnerability and incorrectly configured access control security levels in the...

7.5CVSS5.4AI score0.00271EPSS

Exploits0References3

Positive Technologies•added 2026/02/20 12:0 a.m.•3 views

PT-2026-21224

Name of the Vulnerable Software and Affected Versions Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme versions through 1.3 Description The software contains a flaw related to improper control of filenames used in include/require statements, specifically a PHP Local File Inclusi...

5.4AI score0.00327EPSS

Exploits0References3

Patchstack•added 2026/02/17 11:46 a.m.•6 views

WordPress PawFriends - Pet Shop and Veterinary WordPress theme theme <= 1.3 - Insecure Direct Object References (IDOR) vulnerability

WordPress PawFriends - Pet Shop and Veterinary WordPress theme theme = 1.3 - Insecure Direct Object References IDOR vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme PawFriends - Pet Shop and Veterinary WordPress Theme versions = 1.3...

5.4CVSS5.5AI score0.00271EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/01/23 9:15 p.m.•5 views

CVE-2026-22382

Cross-Site Request Forgery CSRF vulnerability in Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme pawfriends allows Cross Site Request Forgery.This issue affects PawFriends - Pet Shop and Veterinary WordPress Theme: from n/a through = 1.3...

5.4CVSS5.4AI score0.00104EPSS

Exploits0References1

Cvelist•added 2026/01/22 4:52 p.m.•17 views

CVE-2026-22382 WordPress PawFriends - Pet Shop and Veterinary WordPress Theme theme <= 1.3 - Cross Site Request Forgery (CSRF) vulnerability

5.4CVSS0.00104EPSS

Exploits0References1

Vulnrichment•added 2026/01/22 4:52 p.m.•3 views

CVE-2026-22382 WordPress PawFriends - Pet Shop and Veterinary WordPress Theme theme <= 1.3 - Cross Site Request Forgery (CSRF) vulnerability

5.4CVSS5.9AI score0.00104EPSS

Exploits0References1

ATTACKERKB•added 2026/01/22 4:52 p.m.•6 views

CVE-2026-22382

5.4CVSS5.2AI score0.00104EPSS

Exploits0References2

CVE•added 2026/01/22 4:52 p.m.•14 views

CVE-2026-22382

CVE-2026-22382: CSRF vulnerability in Mikado-Themes PawFriends – Pet Shop and Veterinary WordPress Theme (pawfriends), affected versions from n/a to

5.4CVSS5.4AI score0.00104EPSS

Exploits0References1

Patchstack•added 2025/12/30 3:12 p.m.•4 views

WordPress PawFriends - Pet Shop and Veterinary WordPress Theme theme <= 1.3 - Cross Site Request Forgery (CSRF) vulnerability

WordPress PawFriends - Pet Shop and Veterinary WordPress Theme theme = 1.3 - Cross Site Request Forgery CSRF vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme PawFriends - Pet Shop and Veterinary WordPress Theme versions = 1.3...

5.4CVSS7AI score0.00104EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by