Lucene search
K

97 matches found

CNNVD
CNNVD
added 2026/01/22 12:0 a.m.7 views

WordPress plugin Powerlift has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

8.1CVSS5.8AI score0.00504EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/19 7:33 a.m.3 views

CVE-2025-49360

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Militarology militarology allows PHP Local File Inclusion.This issue affects Militarology: from n/a through = 1.0.15...

8.1CVSS7.1AI score0.00519EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 9:30 a.m.3 views

EUVD-2025-204168

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Stallion stallion allows PHP Local File Inclusion.This issue affects Stallion: from n/a through = 1.17...

8.1CVSS6.6AI score0.00445EPSS
Exploits0References2
OSV
OSV
added 2025/12/18 8:15 a.m.3 views

CVE-2025-58923

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Critique critique allows PHP Local File Inclusion.This issue affects Critique: from n/a through = 1.17...

8.1CVSS5.8AI score0.00445EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/18 7:21 a.m.2 views

CVE-2025-58900 WordPress UniTravel theme <= 1.4.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes UniTravel unitravel allows PHP Local File Inclusion.This issue affects UniTravel: from n/a through = 1.4.2...

5.5AI score0.00445EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/18 7:21 a.m.1 views

CVE-2025-53438 WordPress FitLine theme <= 1.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes FitLine fitline allows PHP Local File Inclusion.This issue affects FitLine: from n/a through = 1.6...

8.1CVSS6.7AI score0.00415EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.5 views

PT-2025-52021

Name of the Vulnerable Software and Affected Versions AncoraThemes Gardis versions through 1.2.13 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of local...

8.1CVSS6.4AI score0.00415EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.3 views

WordPress plugin Takeout 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

8.1CVSS6.6AI score0.00415EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.2 views

WordPress plugin Strux 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.6AI score0.00445EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.7 views

Serendipity 代码问题漏洞

Serendipity is a PHP-based blogging system by the Serendipity team. The system supports the creation of online journals, blogs, web pages, and more. A code issue vulnerability exists in Serendipity version 2.5.0, which stems from an authenticated administrator being able to upload malicious PHP...

8.6CVSS7.9AI score0.00892EPSS
Exploits1References5
NVD
NVD
added 2025/12/09 4:18 p.m.4 views

CVE-2025-67521

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Select Core select-core allows PHP Local File Inclusion.This issue affects Select Core: from n/a through 2.6...

7.5CVSS0.00385EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

WordPress plugin Hara 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

7.5CVSS6.6AI score0.00385EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.2 views

WordPress plugin Jobmonster 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

7.5CVSS6.6AI score0.00385EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/07 12:0 a.m.11 views

PT-2025-49414

Name of the Vulnerable Software and Affected Versions alokjaiswal Hotel-Management-services-using-MYSQL-and-php versions up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f Description A security issue exists in alokjaiswal Hotel-Management-services-using-MYSQL-and-php. The issue is related to cross...

4.8CVSS3AI score0.00237EPSS
Exploits1References8
GithubExploit
GithubExploit
added 2025/11/03 1:49 a.m.131 views

vulnerable-network-inventory-php

Net Inventory System - Vulnerable Version ⚠️ ADVERTENCIA CR...

7.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2025/10/30 12:35 p.m.9 views

What Security Teams Need to Know as PHP and IoT Exploits Surge

Attack automation is accelerating, widening the window between detection and response. Qualys TRU telemetry reveals how these attacks unfold and what defenders can do next. The Qualys Threat Research Unit TRU has identified a sharp increase in attacks targeting PHP servers, IoT devices, and cloud...

10CVSS10AI score0.99999EPSS
Exploits111
EUVD
EUVD
added 2025/10/22 3:31 p.m.3 views

EUVD-2025-35537

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CrocoBlock JetReviews jet-reviews allows PHP Local File Inclusion.This issue affects JetReviews: from n/a through = 3.0.0...

6.6AI score0.00448EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/09/23 12:0 a.m.5 views

Code-Projects Online Hotel Reservation System In PHP SQL注入漏洞

Code-Projects Online Hotel Reservation System In PHP is a Code-Projects open source online hotel reservation system. A SQL injection vulnerability exists in Code-Projects Online Hotel Reservation System In PHP version 1.0, which originates from an incorrect manipulation of the parameter confirm i...

9.8CVSS7.7AI score0.00384EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.3 views

PT-2025-38987

Name of the Vulnerable Software and Affected Versions Pluginwale Easy Pricing Table WP versions through 1.1.3 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Local File Inclusion. This allows for the inclusion of local...

7.5CVSS6.4AI score0.00621EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/03 12:0 a.m.4 views

WordPress plugin immonex Kickstart 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.5CVSS6.4AI score0.00381EPSS
Exploits0References1
Rows per page
Query Builder