CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2026/02/20 1:26 p.m.•1 views

CVE-2026-27052

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in villatheme Sales Countdown Timer for WooCommerce and WordPress sctv-sales-countdown-timer allows PHP Local File Inclusion.This issue affects Sales Countdown Timer for WooCommerce...

7.5CVSS5.9AI score0.0017EPSS

Exploits0References1

Cvelist•added 2026/02/19 8:27 a.m.•27 views

CVE-2026-27052 WordPress Sales Countdown Timer for WooCommerce and WordPress plugin < 1.1.9 - Local File Inclusion vulnerability

7.5CVSS0.0017EPSS

Exploits0References1

CVE•added 2026/02/19 8:27 a.m.•8 views

CVE-2026-27052

CVE-2026-27052 affects the WordPress plugin VillaTheme Sales Countdown Timer for WooCommerce and WordPress (sctv-sales-countdown-timer) prior to version 1.1.9. The issue is Improper Control of Filename for Include/Require, i.e., a Local File Inclusion vulnerability in the plugin, allowing inclusi...

7.5CVSS5.9AI score0.0017EPSS

Exploits0References1

ATTACKERKB•added 2026/02/19 8:27 a.m.•1 views

CVE-2026-27052

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in VillaTheme Sales Countdown Timer for WooCommerce and WordPress allows PHP Local File Inclusion.This issue affects Sales Countdown Timer for WooCommerce and WordPress: from n/a...

7.5CVSS5.8AI score0.0017EPSS

Exploits0References3

CNNVD•added 2026/02/19 12:0 a.m.•4 views

WordPress plugin Sales Countdown Timer for WooCommerce and WordPress 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

7.5CVSS5.8AI score0.0017EPSS

Exploits0References2

Positive Technologies•added 2026/02/19 12:0 a.m.•3 views

PT-2026-20760

5.5AI score0.0017EPSS

Exploits0References1

Patchstack•added 2026/01/12 1:6 p.m.•5 views

WordPress Sales Countdown Timer for WooCommerce and WordPress plugin <= 1.1.8.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Sales Countdown Timer for WooCommerce and WordPress versions = 1.1.8.1...

7.5CVSS5.5AI score0.0017EPSS

Exploits0Affected Software1

CVE•added 2025/03/12 7:0 a.m.•42 views

CVE-2024-12589

The CVE CVE-2024-12589 affects the Finale Lite – Sales Countdown Timer & Discount for WooCommerce WordPress plugin (

6.4CVSS5.8AI score0.00095EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2025/03/12 7:0 a.m.•6 views

CVE-2024-12589 Finale Lite – Sales Countdown Timer & Discount for WooCommerce <= 2.19.0 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Countdown Timer

The Finale Lite – Sales Countdown Timer & Discount for WooCommerce plugin for WordPress is vulnerable to Stored DOM-Based Cross-Site Scripting via the countdown timer in all versions up to, and including, 2.19.0 due to insufficient input sanitization and output escaping. This makes it possible fo...

6.4CVSS5.8AI score0.00095EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by