CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2025/12/19 7:33 a.m.•4 views

CVE-2025-58934

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes The Gig thegig allows PHP Local File Inclusion.This issue affects The Gig: from n/a through = 1.18.0...

8.1CVSS7.1AI score0.00445EPSS

Exploits0References1

EUVD•added 2025/12/18 9:30 a.m.•2 views

EUVD-2025-204161

8.1CVSS6.6AI score0.00445EPSS

Exploits0References2

OSV•added 2025/12/18 8:16 a.m.•3 views

CVE-2025-58934

8.1CVSS5.8AI score0.00445EPSS

Exploits0References1

Cvelist•added 2025/12/18 7:21 a.m.•20 views

CVE-2025-58934 WordPress The Gig theme <= 1.18.0 - Local File Inclusion vulnerability

8.1CVSS0.00445EPSS

Exploits0References1

Vulnrichment•added 2025/12/18 7:21 a.m.•3 views

CVE-2025-58934 WordPress The Gig theme <= 1.18.0 - Local File Inclusion vulnerability

8.1CVSS6.7AI score0.00445EPSS

Exploits0References1

CVE•added 2025/12/18 7:21 a.m.•16 views

CVE-2025-58934

CVE-2025-58934 describes an improper filename control vulnerability in the WordPress plugin/theme combination involving The Gig WordPress theme (The Gig) versions up to and including 1.18.0. The issue is described as a PHP Local File Inclusion caused by insufficient validation in Include/Require ...

8.1CVSS6.7AI score0.00445EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/12/18 12:0 a.m.•2 views

WordPress plugin The Gig 安全漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.6AI score0.00445EPSS

Exploits0References1