Lucene search
K

11 matches found

Cvelist
Cvelist
added 2025/12/16 8:13 a.m.30 views

CVE-2025-68077 WordPress Stockholm theme <= 9.14.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Stockholm stockholm allows Stored XSS.This issue affects Stockholm: from n/a through = 9.14.1...

6.5CVSS0.00133EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/16 8:13 a.m.4 views

CVE-2025-68076 WordPress Stockholm Core plugin <= 2.4.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Select-Themes Stockholm Core stockholm-core allows Stored XSS.This issue affects Stockholm Core: from n/a through = 2.4.6...

5.6AI score0.00133EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/16 8:13 a.m.3 views

CVE-2025-68068 WordPress Stockholm theme <= 9.14.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Stockholm stockholm allows PHP Local File Inclusion.This issue affects Stockholm: from n/a through = 9.14.1...

6.7AI score0.00316EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/16 8:13 a.m.32 views

CVE-2025-68067 WordPress Stockholm Core plugin <= 2.4.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Stockholm Core stockholm-core allows PHP Local File Inclusion.This issue affects Stockholm Core: from n/a through = 2.4.6...

7.5CVSS0.00328EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/16 8:13 a.m.29 views

CVE-2025-68068 WordPress Stockholm theme <= 9.14.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Stockholm stockholm allows PHP Local File Inclusion.This issue affects Stockholm: from n/a through = 9.14.1...

7.5CVSS0.00316EPSS
Exploits0References1
CVE
CVE
added 2025/12/16 8:13 a.m.17 views

CVE-2025-68068

The CVE-2025-68068 entry corresponds to a PHP Local File Inclusion in the WordPress Stockholm theme (Stockholm) due to improper control of filenames in Include/Require statements. Affected is Stockholm versions up to 9.14.1 (inclusive). The vulnerability is described as PHP Remote File Inclusion ...

7.5CVSS6.7AI score0.00316EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/10/18 8:46 p.m.5 views

WordPress Stockholm Core plugin <= 2.4.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Stockholm Core versions = 2.4.6...

6.5CVSS6.1AI score0.00133EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 9:21 a.m.6 views

WordPress Stockholm Core plugin <= 2.4.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Stockholm Core versions = 2.4.1...

7.1CVSS6.1AI score0.00271EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 9:19 a.m.5 views

WordPress Stockholm theme <= 9.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme Stockholm versions = 9.6...

8.8CVSS7AI score0.00514EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 9:18 a.m.3 views

WordPress Stockholm theme <= 9.6 - Unauthenticated Local File Inclusion vulnerability

Unauthenticated Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme Stockholm versions = 9.6...

9.8CVSS7AI score0.00542EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 12:0 a.m.13 views

WordPress Stockholm Theme <= 9.6 is vulnerable to Local File Inclusion

Software Stockholm Type Theme Vulnerable versions = 9.6 Fixed in 9.7 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-34551 Patch priority High CVSS severity High 9 Developer Claim ownership PSID ba79b1de262f Credits Rafie Muhammad Patchstack Required privilege...

9.8CVSS6.8AI score0.00542EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder