15 matches found
CVE-2025-64363
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in SeventhQueen Kleo kleo allows PHP Local File Inclusion.This issue affects Kleo: from n/a through 5.5.0...
EUVD-2025-37330
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in SeventhQueen Kleo kleo allows PHP Local File Inclusion.This issue affects Kleo: from n/a through 5.5.0...
CVE-2025-64363
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in SeventhQueen Kleo kleo allows PHP Local File Inclusion.This issue affects Kleo: from n/a through 5.5.0...
PT-2025-44614
Name of the Vulnerable Software and Affected Versions SeventhQueen Kleo versions prior to 5.5.0 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Local File Inclusion. This allows for the inclusion of local files...
EUVD-2025-12573
Malicious code in bioql PyPI...
EUVD-2024-53007
Malicious code in bioql PyPI...
CVE-2025-39367
Missing Authorization vulnerability in SeventhQueen Kleo kleo.This issue affects Kleo: from n/a through 5.4.4...
CVE-2025-39367
Missing Authorization vulnerability in SeventhQueen Kleo kleo.This issue affects Kleo: from n/a through 5.4.4...
CVE-2025-39367
CVE-2025-39367 describes a missing/unauthorized access issue in the WordPress theme KLEO (SeventhQueen Kleo). Affected versions are prior to 5.4.4 ; the root cause is a missing authorization (a broken access control) vulnerability. The vulnerability is addressed in version 5.4.4 or later. CVSSv3....
WordPress plugin SeventhQueen Kleo 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security...
PT-2025-18056 · Seventhqueen · Seventhqueen Kleo
Name of the Vulnerable Software and Affected Versions: SeventhQueen Kleo versions prior to 5.4.4 Description: The issue is related to a missing authorization vulnerability. This problem affects SeventhQueen Kleo, with no specific details on the estimated number of potentially affected devices or...
CVE-2024-56209
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeventhQueen Kleo kleo allows Reflected XSS.This issue affects Kleo: from n/a through 5.4.4...
CVE-2024-56209
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeventhQueen Kleo kleo allows Reflected XSS.This issue affects Kleo: from n/a through 5.4.4...
CVE-2024-56209
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeventhQueen Kleo allows Reflected XSS.This issue affects Kleo: from n/a before 5.4.4...
PT-2024-36743 · Seventhqueen · Seventhqueen Kleo
Name of the Vulnerable Software and Affected Versions: SeventhQueen Kleo versions prior to 5.4.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Reflected XSS. This means that an attacker can inje...