Lucene search
+L

60 matches found

ptsecurity
ptsecurity
added 2026/01/22 12:0 a.m.9 views

PT-2026-4230

Missing Authorization vulnerability in Select-Themes Prowess prowess allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Prowess: from n/a through = 1.8.1...

5.4AI score0.00272EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/01/22 12:0 a.m.14 views

PT-2026-4231

Missing Authorization vulnerability in Select-Themes Don Peppe donpeppe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Don Peppe: from n/a through = 1.3...

5.4AI score0.00185EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/01/09 8:35 a.m.18 views

CVE-2024-34554

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Select-Themes Stockholm Core allows PHP Local File Inclusion.This issue affects Stockholm Core: from n/a through 2.4.1...

8.8CVSS6.7AI score0.00514EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 8:34 a.m.9 views

CVE-2024-34551

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Select-Themes Stockholm allows PHP Local File Inclusion.This issue affects Stockholm: from n/a through 9.6...

9.8CVSS6.7AI score0.00542EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 8:34 a.m.19 views

CVE-2024-34553

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Stockholm Core allows Reflected XSS.This issue affects Stockholm Core: from n/a through 2.4.1...

7.1CVSS5.2AI score0.00271EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/12/31 11:6 a.m.4 views

CVE-2025-69029

Authorization Bypass Through User-Controlled Key vulnerability in Select-Themes Struktur struktur allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Struktur: from n/a through = 2.5.1...

5.4CVSS7AI score0.00185EPSS
Exploits0References1
euvd
euvd
added 2025/12/30 12:30 p.m.6 views

EUVD-2025-205715

Authorization Bypass Through User-Controlled Key vulnerability in Select-Themes Struktur struktur allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Struktur: from n/a through = 2.5.1...

6.5AI score0.00185EPSS
Exploits0References2
nvd
nvd
added 2025/12/30 11:16 a.m.4 views

CVE-2025-69029

Authorization Bypass Through User-Controlled Key vulnerability in Select-Themes Struktur struktur allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Struktur: from n/a through = 2.5.1...

5.4CVSS0.00185EPSS
Exploits0References1
cvelist
cvelist
added 2025/12/30 10:47 a.m.27 views

CVE-2025-69029 WordPress Struktur theme <= 2.5.1 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Select-Themes Struktur struktur allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Struktur: from n/a through = 2.5.1...

5.4CVSS0.00185EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/12/30 12:0 a.m.6 views

PT-2025-53910

Name of the Vulnerable Software and Affected Versions Select-Themes Struktur versions through 2.5.1 Description An authorization bypass exists in Select-Themes Struktur due to incorrectly configured access control security levels. This allows exploitation through a user-controlled key...

6.6AI score0.00185EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/12/17 10:3 a.m.5 views

CVE-2025-68068

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Stockholm stockholm allows PHP Local File Inclusion.This issue affects Stockholm: from n/a through = 9.14.1...

7.5CVSS7.1AI score0.00321EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/12/17 10:3 a.m.5 views

CVE-2025-68076

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Stockholm Core stockholm-core allows Stored XSS.This issue affects Stockholm Core: from n/a through = 2.4.6...

6.5CVSS6AI score0.00135EPSS
Exploits0References1
euvd
euvd
added 2025/12/16 9:31 a.m.5 views

EUVD-2025-203541

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Stockholm stockholm allows Stored XSS.This issue affects Stockholm: from n/a through = 9.14.1...

6.5CVSS5.5AI score0.00135EPSS
Exploits0References2
euvd
euvd
added 2025/12/16 9:31 a.m.5 views

EUVD-2025-203542

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Stockholm Core stockholm-core allows Stored XSS.This issue affects Stockholm Core: from n/a through = 2.4.6...

6.5CVSS5.5AI score0.00135EPSS
Exploits0References2
nvd
nvd
added 2025/12/16 9:16 a.m.13 views

CVE-2025-68077

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Stockholm stockholm allows Stored XSS.This issue affects Stockholm: from n/a through = 9.14.1...

6.5CVSS0.00135EPSS
Exploits0References1
nvd
nvd
added 2025/12/16 9:16 a.m.7 views

CVE-2025-68076

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Stockholm Core stockholm-core allows Stored XSS.This issue affects Stockholm Core: from n/a through = 2.4.6...

6.5CVSS0.00135EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/12/16 12:0 a.m.4 views

PT-2025-51456

Name of the Vulnerable Software and Affected Versions Select-Themes Stockholm Core versions through 2.4.6 Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a Cross-site Scripting XSS issue. Specifically, this is a Stored XSS,...

6.5CVSS5.8AI score0.00135EPSS
Exploits0References4
redhatcve
redhatcve
added 2025/12/10 2:23 p.m.6 views

CVE-2025-67539

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Select Core select-core allows DOM-Based XSS.This issue affects Select Core: from n/a through 2.6...

6.5CVSS6.4AI score0.00162EPSS
Exploits0References1
euvd
euvd
added 2025/12/09 6:30 p.m.6 views

EUVD-2025-202105

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Select Core select-core allows DOM-Based XSS.This issue affects Select Core: from n/a through 2.6...

6.5CVSS5.9AI score0.00162EPSS
Exploits0References2
nvd
nvd
added 2025/12/09 4:18 p.m.5 views

CVE-2025-67539

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Select Core select-core allows DOM-Based XSS.This issue affects Select Core: from n/a through 2.6...

6.5CVSS0.00162EPSS
Exploits0References1
Rows per page
Query Builder