Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

167 matches found

Patchstack
Patchstackadded 2026/04/29 2:11 p.m.2 views

WordPress Favicon Rotator plugin <= 1.2.11 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by timomangcut in WordPress Plugin Favicon Rotator versions = 1.2.11...

5.8AI score
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2026/03/06 7:54 a.m.3 views

CVE-2026-28054

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Legal Stone legal-stone allows PHP Local File Inclusion.This issue affects Legal Stone: from n/a through = 1.2.11...

8.1CVSS5.8AI score0.00172EPSS
Exploits0References1
EUVD
EUVDadded 2026/03/05 6:30 a.m.2 views

EUVD-2026-9715

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX M.Williamson williamson allows PHP Local File Inclusion.This issue affects M.Williamson: from n/a through = 1.2.11...

5.9AI score0.00172EPSS
Exploits0References2
EUVD
EUVDadded 2026/03/05 6:30 a.m.2 views

EUVD-2026-9560

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Crown Art crown-art allows PHP Local File Inclusion.This issue affects Crown Art: from n/a through = 1.2.11...

5.9AI score0.00172EPSS
Exploits0References2
CVE
CVEadded 2026/03/05 5:54 a.m.3 views

CVE-2026-28054

The CVE-2026-28054 entry concerns ThemeREX Legal Stone WordPress Theme (vulnerable

8.1CVSS5.9AI score0.00172EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/05 5:54 a.m.2 views

CVE-2026-28055 WordPress M.Williamson theme <= 1.2.11 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX M.Williamson williamson allows PHP Local File Inclusion.This issue affects M.Williamson: from n/a through = 1.2.11...

8.1CVSS5.8AI score0.00172EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/05 5:54 a.m.1 views

CVE-2026-28014 WordPress Translogic theme <= 1.2.11 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Translogic translogic allows PHP Local File Inclusion.This issue affects Translogic: from n/a through = 1.2.11...

8.1CVSS5.8AI score0.00172EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/05 5:53 a.m.2 views

CVE-2026-22434 WordPress Crown Art theme <= 1.2.11 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Crown Art crown-art allows PHP Local File Inclusion.This issue affects Crown Art: from n/a through = 1.2.11...

8.1CVSS5.8AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/03/05 12:0 a.m.2 views

PT-2026-23334

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Legal Stone legal-stone allows PHP Local File Inclusion.This issue affects Legal Stone: from n/a through = 1.2.11...

5.9AI score0.00172EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/03/05 12:0 a.m.3 views

PT-2026-23296

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Translogic translogic allows PHP Local File Inclusion.This issue affects Translogic: from n/a through = 1.2.11...

5.9AI score0.00172EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/03/05 12:0 a.m.3 views

WordPress plugin Crown Art 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

8.1CVSS5.8AI score0.00172EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/03/05 12:0 a.m.3 views

WordPress plugin Legal Stone 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

8.1CVSS5.8AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/03/05 12:0 a.m.1 views

PT-2026-23335

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX M.Williamson williamson allows PHP Local File Inclusion.This issue affects M.Williamson: from n/a through = 1.2.11...

5.9AI score0.00172EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/03/05 12:0 a.m.3 views

WordPress plugin Translogic 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.1CVSS5.8AI score0.00172EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/03/05 12:0 a.m.2 views

WordPress plugin M.Williamson 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

8.1CVSS5.8AI score0.00172EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/03/02 11:34 a.m.3 views

WordPress Translogic theme <= 1.2.11 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Translogic versions = 1.2.11...

8.1CVSS5.9AI score0.00172EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2026/02/25 12:34 p.m.4 views

WordPress Crown Art theme <= 1.2.11 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Crown Art versions = 1.2.11...

8.1CVSS5.9AI score0.00172EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2026/02/11 1:33 a.m.3 views

CVE-2026-25938

FUXA is a web-based Process Visualization SCADA/HMI/Dashboard software. From 1.2.8 through 1.2.10, an authentication bypass vulnerability in FUXA allows an unauthenticated, remote attacker to execute arbitrary code on the server when the Node-RED plugin is enabled. This has been patched in FUXA...

9.8CVSS6.2AI score0.00145EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/11 1:33 a.m.5 views

CVE-2026-25939

FUXA is a web-based Process Visualization SCADA/HMI/Dashboard software. From 1.2.8 through version 1.2.10, an authorization bypass vulnerability in the FUXA allows an unauthenticated, remote attacker to create and modify arbitrary schedulers, exposing connected ICS/SCADA environments to follow-on...

9.3CVSS5.7AI score0.00022EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/11 1:33 a.m.4 views

CVE-2026-25951

FUXA is a web-based Process Visualization SCADA/HMI/Dashboard software. Prior to 1.2.11, there is a flaw in the path sanitization logic allows an authenticated attacker with administrative privileges to bypass directory traversal protections. By using nested traversal sequences e.g., ....//, an...

8.6CVSS5.9AI score0.00037EPSS
Exploits0References1
Rows per page
Query Builder