Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/04/10 7:23 p.m.4 views

CVE-2026-39543

Missing Authorization vulnerability in Themefic Tourfic tourfic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tourfic: from n/a through = 2.21.4...

5.3CVSS5.8AI score0.00221EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/08 9:31 a.m.3 views

EUVD-2026-20199

Missing Authorization vulnerability in Themefic Tourfic tourfic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tourfic: from n/a through = 2.21.4...

5.9AI score0.00221EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.3 views

CVE-2026-39543

Missing Authorization vulnerability in Themefic Tourfic tourfic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tourfic: from n/a through = 2.21.4...

5.9AI score0.00221EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.5 views

PT-2026-31150

CVE-2026-39543 Missing Authorization vulnerability in Themefic Tourfic tourfic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tourfic: fr… https://t.co/hCHVJGngBw...

5.3CVSS5.8AI score0.00221EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-26173

Malicious code in bioql PyPI...

7.1CVSS8.8AI score0.00622EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-26172

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00632EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-3848

Malicious code in bioql PyPI...

9.1CVSS8.9AI score0.00615EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-26170

Malicious code in bioql PyPI...

6.5CVSS8.8AI score0.00343EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:56 a.m.8 views

CVE-2024-29134

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themefic Tourfic tourfic.This issue affects Tourfic: from n/a through = 2.11.8...

6.5CVSS7.2AI score0.00343EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:8 a.m.8 views

CVE-2024-29136

Deserialization of Untrusted Data vulnerability in Themefic Tourfic tourfic.This issue affects Tourfic: from n/a through = 2.11.17...

8.8CVSS7.2AI score0.00632EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:2 a.m.6 views

CVE-2024-29137

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themefic Tourfic tourfic.This issue affects Tourfic: from n/a through = 2.11.7...

7.1CVSS7.2AI score0.00622EPSS
Exploits0References1
OSV
OSV
added 2025/01/24 6:15 p.m.2 views

CVE-2025-24650

Unrestricted Upload of File with Dangerous Type vulnerability in Themefic Tourfic allows Upload a Web Shell to a Web Server. This issue affects Tourfic: from n/a through 2.15.3...

9.1CVSS7.3AI score0.00615EPSS
Exploits0References1
NVD
NVD
added 2025/01/24 6:15 p.m.31 views

CVE-2025-24650

Unrestricted Upload of File with Dangerous Type vulnerability in Themefic Tourfic tourfic allows Upload a Web Shell to a Web Server.This issue affects Tourfic: from n/a through = 2.15.3...

9.1CVSS0.00615EPSS
Exploits0References1
CVE
CVE
added 2025/01/24 5:24 p.m.61 views

CVE-2025-24650

CVE-2025-24650 is a WordPress Tourfic plugin vulnerability (versions

9.1CVSS7.2AI score0.00615EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/24 12:0 a.m.11 views

PT-2025-5474 · Unknown · Themefic Tourfic

Name of the Vulnerable Software and Affected Versions: Themefic Tourfic versions 2.15.3 and earlier Description: The issue allows for the unrestricted upload of files with dangerous types, enabling the upload of a web shell to a web server. This can lead to web shell attacks. Recommendations: For...

9.1CVSS9.3AI score0.00615EPSS
Exploits0References7
OSV
OSV
added 2024/03/19 2:15 p.m.2 views

CVE-2024-29136

Deserialization of Untrusted Data vulnerability in Themefic Tourfic.This issue affects Tourfic: from n/a through 2.11.17...

8.8CVSS5.8AI score0.00632EPSS
Exploits0References1
NVD
NVD
added 2024/03/19 2:15 p.m.16 views

CVE-2024-29136

Deserialization of Untrusted Data vulnerability in Themefic Tourfic tourfic.This issue affects Tourfic: from n/a through = 2.11.17...

8.8CVSS8.5AI score0.00632EPSS
Exploits0References2
OSV
OSV
added 2024/03/19 2:15 p.m.2 views

CVE-2024-29134

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themefic Tourfic allows Stored XSS.This issue affects Tourfic: from n/a through 2.11.8...

5.4CVSS5.8AI score0.00343EPSS
Exploits0References1
CVE
CVE
added 2024/03/19 1:52 p.m.64 views

CVE-2024-29134

CVE-2024-29134 affects the Tourfic WordPress plugin (versions up to 2.11.8). It is a Stored XSS due to improper neutralization of input during web page generation. The issue is fixed in Tourfic 2.11.9; administrators should upgrade to the fixed version to mitigate the vulnerability. The connected...

6.5CVSS7.2AI score0.00343EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/19 12:0 a.m.7 views

PT-2024-22755 · Unknown · Themefic Tourfic

Name of the Vulnerable Software and Affected Versions: Themefic Tourfic versions n/a through 2.11.17 Description: The issue is related to Deserialization of Untrusted Data. This is a type of vulnerability where an application deserializes data from an untrusted source, potentially allowing an...

8.8CVSS9.5AI score0.00632EPSS
Exploits0References4
Rows per page
Query Builder