CVE-2025-15470 Eleganzo <= 1.2 - Authenticated (Subscriber+) Arbitrary Directory Deletion

The Eleganzo theme for WordPress is vulnerable to arbitrary directory deletion due to insufficient path validation in the akdrequiredplugincallback function in all versions up to, and including, 1.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...

EUVD-2025-202004

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes North - Required Plugin north-plugin allows PHP Local File Inclusion.This issue affects North - Required Plugin: from n/a through = 1.4.2...

CVE-2025-63003

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes North - Required Plugin north-plugin allows PHP Local File Inclusion.This issue affects North - Required Plugin: from n/a through = 1.4.2...

CVE-2025-63003 WordPress North - Required Plugin plugin <= 1.4.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes North - Required Plugin north-plugin allows PHP Local File Inclusion.This issue affects North - Required Plugin: from n/a through = 1.4.2...

CVE-2025-63003

CVE-2025-63003 describes an improper control of Filename for Include/Require in the PHP program, leading to a PHP Local File Inclusion (LFI) via the WordPress plugin “North - Required Plugin” (north-plugin) in versions up to and including 1.4.2. The issue is a PHP Remote File Inclusion style vuln...

PT-2025-50025

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes North - Required Plugin north-plugin allows PHP Local File Inclusion.This issue affects North - Required Plugin: from n/a through = 1.4.2...

WordPress plugin North - Required Plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

WordPress North - Required Plugin plugin <= 1.4.2 - Local File Inclusion vulnerability

WordPress North - Required Plugin plugin = 1.4.2 - Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin North - Required Plugin versions = 1.4.2...

WordPress 404 to 301 Plugin < 3.1.2 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:404to301project:404to301"; ifdescription...