Lucene search
K

105 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-40830

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00248EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-8474

Malicious code in bioql PyPI...

6.5CVSS9.2AI score0.00231EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/29 12:6 p.m.8 views

CVE-2025-52816

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehunk Zita zita allows PHP Local File Inclusion.This issue affects Zita: from n/a through = 1.6.5...

9.8CVSS5.9AI score0.00357EPSS
Exploits0References1
NVD
NVD
added 2025/06/27 12:15 p.m.5 views

CVE-2025-52816

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehunk Zita zita allows PHP Local File Inclusion.This issue affects Zita: from n/a through = 1.6.5...

9.8CVSS0.00357EPSS
Exploits0References1
OSV
OSV
added 2025/06/27 12:15 p.m.4 views

CVE-2025-52816

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehunk Zita allows PHP Local File Inclusion. This issue affects Zita: from n/a through 1.6.5...

9.8CVSS5.8AI score0.00357EPSS
Exploits0References1
CVE
CVE
added 2025/06/27 11:52 a.m.24 views

CVE-2025-52816

CVE-2025-52816 affects the WordPress theme Zita (versions up to and including 1.6.5). The issue is an improper control of the filename for include/require in PHP, enabling a PHP local file inclusion (LFI) vulnerability. Public sources rate the CVSS as high (e.g., base score 9.8 in NVD metrics, wi...

9.8CVSS5.9AI score0.00357EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/27 12:0 a.m.7 views

PT-2025-27134

Name of the Vulnerable Software and Affected Versions: themehunk Zita versions 1.6.5 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusion in...

9.8CVSS6.7AI score0.00357EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/06/08 1:19 p.m.11 views

CVE-2025-30990

Missing Authorization vulnerability in ThemeHunk ThemeHunk themehunk-megamenu-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ThemeHunk: from n/a through = 1.2.0...

5.4CVSS5.9AI score0.00215EPSS
Exploits0References1
OSV
OSV
added 2025/06/06 1:15 p.m.2 views

CVE-2025-30990

Missing Authorization vulnerability in ThemeHunk ThemeHunk allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ThemeHunk: from n/a through 1.1.1...

5.4CVSS5.8AI score0.00215EPSS
Exploits0References1
NVD
NVD
added 2025/06/06 1:15 p.m.6 views

CVE-2025-30990

Missing Authorization vulnerability in ThemeHunk ThemeHunk themehunk-megamenu-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ThemeHunk: from n/a through = 1.2.0...

5.4CVSS0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/06 12:54 p.m.5 views

CVE-2025-30990 WordPress ThemeHunk plugin <= 1.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in ThemeHunk ThemeHunk themehunk-megamenu-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ThemeHunk: from n/a through = 1.2.0...

4.3CVSS5.8AI score0.00215EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 12:54 p.m.41 views

CVE-2025-30990

CVE-2025-30990 pertains to ThemeHunk WordPress plugin where Missing Authorization arises from misconfigured access control in ThemeHunk, affecting versions up to 1.1.1. The vulnerability enables an unauthorized actor to exploit access control, per the Red Hat advisory describing Missing Authoriza...

5.4CVSS5.9AI score0.00215EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/06/06 12:54 p.m.12 views

CVE-2025-30990 WordPress ThemeHunk plugin <= 1.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in ThemeHunk ThemeHunk themehunk-megamenu-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ThemeHunk: from n/a through = 1.2.0...

4.3CVSS0.00215EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/06 12:0 a.m.4 views

PT-2025-24189

Name of the Vulnerable Software and Affected Versions ThemeHunk versions 1.1.1 and earlier Description The issue is related to missing authorization, allowing exploitation of incorrectly configured access control security levels. Recommendations For ThemeHunk versions 1.1.1 and earlier, update to...

5.4CVSS4.9AI score0.00215EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.5 views

WordPress plugin ThemeHunk 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS4.9AI score0.00215EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/06/05 1:19 a.m.9 views

WordPress ThemeHunk plugin <= 1.1.2 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by domiee13 in WordPress Plugin ThemeHunk versions = 1.1.2...

5.4CVSS6.7AI score0.00215EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 7:21 a.m.7 views

CVE-2024-44049

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHunk Gutenberg Blocks unlimited-blocks.This issue affects Gutenberg Blocks: from n/a through = 1.2.8...

6.5CVSS5.9AI score0.00248EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:2 a.m.8 views

CVE-2023-27431

Cross-Site Request Forgery CSRF vulnerability in ThemeHunk Big Store theme = 1.9.3 versions...

8.8CVSS7.1AI score0.00312EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:10 a.m.4 views

CVE-2023-28688

Cross-Site Request Forgery CSRF vulnerability in ThemeHunk TH Variation Swatches allows Cross Site Request Forgery.This issue affects TH Variation Swatches: from n/a through 1.2.7...

5.4CVSS7AI score0.00194EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:39 a.m.5 views

CVE-2022-40218

Missing Authorization vulnerability in ThemeHunk Advance WordPress Search Plugin.This issue affects Advance WordPress Search Plugin: from n/a through 1.1.4...

6.5CVSS7AI score0.00486EPSS
Exploits0References1
Rows per page
Query Builder