CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 5 days ago•17 views

CVE-2019-25758 Joomla! Component vBizz 1.0.7 Remote Code Execution

Joomla! Component vBizz 1.0.7 contains an unrestricted file upload vulnerability that allows authenticated attackers to upload arbitrary PHP files by submitting malicious files through the profilepic parameter. Attackers can upload PHP files via POST requests to the employee view endpoint and...

8.8CVSS0.0067EPSS

CVE•added 2026/06/15 12:0 p.m.•9 views

CVE-2016-20075

CVE-2016-20075 affects WordPress Ultimate Product Catalog 3.8.6. The vulnerability is an arbitrary file upload via the custom fields feature, exploitable by authenticated users with contributor, editor, author, or administrator roles. By uploading malicious files (e.g., PHP shells) through the Pr...

8.8CVSS6AI score0.00327EPSS

Exploits0References3

NVD•added 2026/06/09 9:16 a.m.•8 views

CVE-2026-7542

The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Disclosure in versions 7.0 to 7.0.10. This is due to three compounding design flaws: 1 the plugin leaks a valid backend AJAX nonce revslideractions to all authenticated users including Subscribers via the adminfoote...

6.5CVSS0.00252EPSS

EUVD•added 2026/06/09 7:49 a.m.•11 views

EUVD-2026-35376

The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Disclosure in versions up to and including 7.0.10. This is due to three compounding design flaws: 1 the plugin leaks a valid backend AJAX nonce revslideractions to all authenticated users including Subscribers via t...

6.5CVSS5.5AI score0.00252EPSS

RedhatCVE•added 2026/06/05 7:32 p.m.•8 views

CVE-2026-6344

The Fluent Forms plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including 6.2.1. This is due to insufficient path validation in the getAttachments method of EmailNotificationActions, which resolves attacker-supplied file-upload URLs into filesystem paths without...

4.9CVSS5.6AI score0.00554EPSS

RedhatCVE•added 2026/06/05 7:32 p.m.•8 views

CVE-2026-6262

The Betheme theme for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 28.4. This is due to the uploadicons function workflow using a user-controlled upload path mfn-icon-upload in a filesystem move operation without constraining it to the uploads directory. Th...

6.5CVSS5.5AI score0.00349EPSS

RedhatCVE•added 2026/06/05 7:10 p.m.•10 views

CVE-2026-8073

The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation and missing capability check in the 'downloadZIP' function in all versions up to, and including, 6.0.6. This makes it possible for...

7.5CVSS5.6AI score0.00564EPSS

RedhatCVE•added 2026/06/02 10:2 p.m.•9 views

CVE-2026-49136

Banana Slides through 0.4.0, patched in commit e8bc490, contains a path traversal vulnerability in the generateimage function within the AI service backend that allows unauthenticated attackers to read arbitrary image-format files outside the intended uploads directory by exploiting an incomplete...

8.7CVSS5.9AI score0.00417EPSS

Positive Technologies•added 2026/06/01 12:0 a.m.•16 views

PT-2026-45559

Banana Slides through 0.4.0, patched in commit e8bc490, contains a path traversal vulnerability in the generate image function within the AI service backend that allows unauthenticated attackers to read arbitrary image-format files outside the intended uploads directory by exploiting an incomplet...

8.7CVSS5.9AI score0.00417EPSS

Exploits0References5

NVD•added 2026/05/28 8:16 a.m.•15 views

CVE-2026-6455

The WP Contact Form 7 DB Handler plugin for WordPress is vulnerable to Cross-Site Request Forgery leading to Arbitrary File Deletion via SQL Injection and PHP Object Injection in versions up to and including 3.0. This is due to a missing nonce verification in the processbulkaction function, the...

8.1CVSS0.00248EPSS

Exploits0References10

NVD•added 2026/05/19 7:16 p.m.•14 views

CVE-2026-8073

7.5CVSS0.00564EPSS

Exploits0References3

ATTACKERKB•added 2026/05/19 6:33 p.m.•13 views

CVE-2026-8073

7.5CVSS5.9AI score0.00564EPSS

Positive Technologies•added 2026/05/19 12:0 a.m.•14 views

PT-2026-41998

7.5CVSS5.9AI score0.00564EPSS

Cvelist•added 2026/05/17 12:11 p.m.•37 views

CVE-2018-25335 WordPress Plugin Peugeot Music 1.0 Arbitrary File Upload

WordPress Plugin Peugeot Music 1.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by sending POST requests to the upload.php endpoint. Attackers can upload files with arbitrary extensions by manipulating the 'name' parameter to...

9.8CVSS0.00515EPSS

Vulnrichment•added 2026/05/17 12:11 p.m.•7 views

CVE-2018-25335 WordPress Plugin Peugeot Music 1.0 Arbitrary File Upload

9.8CVSS6.1AI score0.00515EPSS

CVE•added 2026/05/15 9:40 p.m.•19 views

CVE-2026-44565

CVE-2026-44565 affects Open WebUI prior to 0.6.10. The upload API derives the target path from the original HTTP upload filename without validation, enabling dot-segment path traversal and arbitrary file writes to locations the web server user can access. This is fixed in 0.6.10. Mitigation guida...

8.1CVSS5.8AI score0.00454EPSS

Exploits1References1Affected Software1

NVD•added 2026/05/14 7:16 a.m.•38 views

CVE-2026-6670

The Media Sync plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.4.9 via the 'subdir' and 'mediaitems' parameters. This is due to insufficient validation of user-supplied file paths, which are not checked for directory traversal sequences or restricted t...

6.5CVSS0.00526EPSS

EUVD•added 2026/05/14 6:44 a.m.•23 views

EUVD-2026-30256

6.5CVSS5.8AI score0.00526EPSS