Lucene search
+L

10 matches found

redhatcve
redhatcve
added 2026/01/23 9:17 p.m.7 views

CVE-2025-69314

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes Werkstatt werkstatt allows PHP Local File Inclusion.This issue affects Werkstatt: from n/a through 4.8.3...

8.1CVSS5.5AI score0.00403EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/23 9:16 p.m.9 views

CVE-2025-63017

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS5.5AI score0.00515EPSS
Exploits0References1
nvd
nvd
added 2026/01/22 5:15 p.m.7 views

CVE-2025-63017

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS0.00515EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/01/22 4:51 p.m.3 views

CVE-2025-63017

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS5.4AI score0.00515EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/01/22 4:51 p.m.3 views

CVE-2025-63017 WordPress WerkStatt plugin plugin <= 1.6.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS5.3AI score0.00515EPSS
Exploits0References1
cve
cve
added 2026/01/22 4:51 p.m.13 views

CVE-2025-63017

CVE-2025-63017 affects the WordPress WerkStatt Plugin (werkstatt-plugin) up to version 1.6.6, with an improper control of filename in include/require (Local File Inclusion). The Red Hat/NVD entries and PatchStack/Wordfence references corroborate this LFI issue for WerkStatt

7.5CVSS5.5AI score0.00515EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/01/22 12:0 a.m.7 views

WordPress plugin WerkStatt Plugin has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

7.5CVSS5.8AI score0.00515EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/01/22 12:0 a.m.11 views

PT-2026-3998

Name of the Vulnerable Software and Affected Versions fuelthemes WerkStatt Plugin versions through 1.6.6 Description The WerkStatt Plugin contains a flaw related to improper control of filename handling for include/require statements, specifically a PHP Local File Inclusion issue. This allows for...

5.3AI score0.00515EPSS
Exploits0References3
cnnvd
cnnvd
added 2026/01/22 12:0 a.m.10 views

WordPress plugin Werkstatt has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. Versions...

8.1CVSS5.8AI score0.00403EPSS
Exploits0References1
patchstack
patchstack
added 2025/11/30 4:48 p.m.8 views

WordPress WerkStatt plugin plugin <= 1.6.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin WerkStatt Plugin versions = 1.6.6...

7.5CVSS5.3AI score0.00515EPSS
Exploits0Affected Software1
Rows per page
Query Builder