3 matches found
Exploit for Authentication Bypass Using an Alternate Path or Channel in Gitlab
CVE-2025-4524...
WordPress Madara - Local File Inclusion
Exploit Title: WordPress Madara Local File Inclusion Date: November 1, 2025 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: WordPress Theme Madara Software Link: WordPress Theme Madara Tested on: OS / PHP / WordPress versions used in testing — e.g., Ubuntu 22.04, PHP 8.1, WP 6.4 CVE:...
WordPress Madara Theme <= 2.2.2 is vulnerable to Local File Inclusion
Software Madara Type Theme Vulnerable versions = 2.2.2 Fixed in 2.2.2.1 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2025-4524 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID a3266cbf8e97 Credits Kyle Bouchard ptrstr Required privilege...