CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-19289

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00504EPSS

Exploits0References1

RedhatCVE•added 2025/06/29 12:6 p.m.•6 views

CVE-2025-49886

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WebGeniusLab Zikzag Core zikzag-core allows PHP Local File Inclusion.This issue affects Zikzag Core: from n/a through = 1.4.5...

8.1CVSS5.9AI score0.00504EPSS

Exploits0References1

NVD•added 2025/06/27 12:15 p.m.•3 views

CVE-2025-49886

8.1CVSS0.00504EPSS

Exploits0References1

CVE•added 2025/06/27 11:52 a.m.•13 views

CVE-2025-49886

CVE-2025-49886 relates to WordPress Zikzag Core, where an improper control of filenames in include/require statements enables a PHP Local File Inclusion (LFI) vulnerability. Affected software: Zikzag Core

8.1CVSS5.9AI score0.00504EPSS

Exploits0References1

Cvelist•added 2025/06/27 11:52 a.m.•8 views

CVE-2025-49886 WordPress Zikzag Core plugin <= 1.4.5 - Local File Inclusion Vulnerability

8.1CVSS0.00504EPSS

Exploits0References1

Vulnrichment•added 2025/06/27 11:52 a.m.•2 views

CVE-2025-49886 WordPress Zikzag Core plugin <= 1.4.5 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WebGeniusLab Zikzag Core allows PHP Local File Inclusion. This issue affects Zikzag Core: from n/a through 1.4.5...

8.1CVSS7.4AI score0.00504EPSS

Exploits0References1

CNNVD•added 2025/06/27 12:0 a.m.•1 views

WordPress plugin Zikzag Core 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.1CVSS6.6AI score0.00504EPSS

Exploits0References1

Positive Technologies•added 2025/06/27 12:0 a.m.•2 views

PT-2025-27113 · Unknown · Zikzag Core

Name of the Vulnerable Software and Affected Versions: Zikzag Core versions 1.4.5 and earlier Description: The issue is related to an improper control of filename for include/require statement in a PHP program, also known as PHP Remote File Inclusion, which allows PHP Local File Inclusion...

8.1CVSS6.7AI score0.00504EPSS

Exploits0References2