Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-12082

Malicious code in bioql PyPI...

7.5CVSS8.2AI score0.00611EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/26 5:8 p.m.19 views

CVE-2025-39383

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb Xews Lite xews-lite allows PHP Local File Inclusion.This issue affects Xews Lite: from n/a through = 1.0.9...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References1
NVD
NVD
added 2025/04/24 4:15 p.m.9 views

CVE-2025-39383

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb Xews Lite xews-lite allows PHP Local File Inclusion.This issue affects Xews Lite: from n/a through = 1.0.9...

7.5CVSS0.00611EPSS
Exploits0References1
CVE
CVE
added 2025/04/24 4:8 p.m.55 views

CVE-2025-39383

CVE-2025-39383 affects WordPress plugin Xews Lite up to version 1.0.9. It is an unauthenticated Local File Inclusion (LFI) vulnerability caused by improper control of the filename for Include/Require in PHP. The CVSS 3.1 score is 7.5 (HIGH) with NETWORK attack vector, HIGH impact on confidentiali...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/24 4:8 p.m.6 views

CVE-2025-39383 WordPress Xews Lite plugin <= 1.0.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb Xews Lite xews-lite allows PHP Local File Inclusion.This issue affects Xews Lite: from n/a through = 1.0.9...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/24 12:0 a.m.5 views

WordPress plugin Xews Lite 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.5CVSS7.8AI score0.00611EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.7 views

PT-2025-17748 · Xews Lite · Xews Lite

Name of the Vulnerable Software and Affected Versions: Xews Lite versions 1.0.9 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability. This allows PHP Local File...

7.5CVSS7.8AI score0.00611EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/04/21 11:7 a.m.5 views

WordPress Xews Lite plugin <= 1.0.9 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Theme Xews Lite versions = 1.0.9...

7.5CVSS7AI score0.00611EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/04/21 12:0 a.m.8 views

WordPress Xews Lite Theme <= 1.0.9 is vulnerable to Local File Inclusion

Software Xews Lite Type Theme Vulnerable versions = 1.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-39383 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID c141546901cd Credits Dimas Maulana Required privilege Unauthenticated...

7.5CVSS6.8AI score0.00611EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder