Lucene search
K

24 matches found

Nuclei
Nuclei
added 12 hours ago150 views

Kubio AI Page Builder <= 2.5.1 - Local File Inclusion

The Kubio AI Page Builder plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.5.1 via thekubiohybridthemeloadtemplate function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the...

9.8CVSS7.9AI score0.76761EPSS
Exploits12References3
EUVD
EUVD
added 2026/03/31 12:31 p.m.5 views

EUVD-2026-17355

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Extend Themes Kubio AI Page Builder allows Stored XSS.This issue affects Kubio AI Page Builder: from n/a through 2.7.0...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2025/12/18 12:0 a.m.175 views

📄 Kubio AI Page Builder 2.5.1 PHP LFI Extractor Scanner

A local file inclusion vulnerability exists in the function kubiohybridthemeloadtemplate of the Kubio AI Page Builder plugin for WordPress versions less than or equal to 2.5.1. An unauthenticated attacker may include arbitrary files via path traversal. This may lead to sensitive file disclosure a...

9.8CVSS7.1AI score0.76761EPSS
Exploits39
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-38166

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00245EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/09/25 4:43 p.m.278 views

Exploit for CVE-2025-22294

CVE-2025-2294 – Local File Inclusion LFI в WordPress-плагине...

9.8CVSS6.9AI score0.76761EPSS
Exploits12
CVE
CVE
added 2025/09/19 3:34 a.m.21 views

CVE-2025-8487

CVE-2025-8487 affects Kubio AI Page Builder for WordPress up to version 2.6.3. The vulnerability is caused by a missing capability check on the kubio-image-hub-install-plugin AJAX action, enabling authenticated users with Subscriber-level access and above to install the Image Hub plugin. Exploita...

5.4CVSS4.7AI score0.00244EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2025/05/24 8:35 a.m.309 views

Exploit for CVE-2025-2294

CVE-2025-2294 🚨 CVE-2025-2294 - Local File Inclusion LFI...

9.8CVSS8.2AI score0.76761EPSS
Exploits12
RedhatCVE
RedhatCVE
added 2025/05/23 8:9 a.m.4 views

CVE-2024-5819

The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to DOM-based Stored Cross-Site Scripting via HTML data attributes in all versions up to, and including, 3.2.45 due to insufficient input sanitization and output escaping on user supplied...

6.4CVSS4.8AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:6 a.m.7 views

CVE-2024-13516

The Kubio AI Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'message' parameter in all versions up to, and including, 2.3.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS6.4AI score0.00281EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/04/15 7:27 p.m.187 views

Exploit for CVE-2025-2294

🚨 Kubio AI Page Builder = 2.5.1 - Unauthenticated Local File...

9.8CVSS10AI score0.76761EPSS
Exploits12
Packet Storm
Packet Storm
added 2025/04/07 12:0 a.m.198 views

📄 Kubio AI Page Builder 2.5.1 Local File Inclusion

Kubio AI Page Builder versions 2.5.1 and below suffer from a local file inclusion vulnerability. Exploit Title: Kubio AI Page Builder = 2.5.1 - Local File Inclusion LFI Date: 2025-04-04 Exploit Author: Sheikh Mohammad Hasan https://github.com/4m3rr0r Vendor Homepage:...

9.8CVSS8.7AI score0.76761EPSS
Exploits12
Exploit DB
Exploit DB
added 2025/04/05 12:0 a.m.274 views

Kubio AI Page Builder 2.5.1 - Local File Inclusion (LFI)

Exploit Title: Kubio AI Page Builder = 2.5.1 - Local File Inclusion LFI Date: 2025-04-04 Exploit Author: Sheikh Mohammad Hasan https://github.com/4m3rr0r Vendor Homepage: https://wordpress.org/plugins/kubio/ Software Link: https://downloads.wordpress.org/plugin/kubio.2.5.1.zip Reference:...

9.8CVSS7.4AI score0.76761EPSS
Exploits12
RedhatCVE
RedhatCVE
added 2025/03/30 4:31 a.m.19 views

CVE-2025-2294

The Kubio AI Page Builder plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.5.1 via thekubiohybridthemeloadtemplate function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the...

9.8CVSS8.3AI score0.76761EPSS
Exploits12References1
Cvelist
Cvelist
added 2025/03/28 4:22 a.m.23 views

CVE-2025-2294 Kubio AI Page Builder <= 2.5.1 - Unauthenticated Local File Inclusion

The Kubio AI Page Builder plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.5.1 via thekubiohybridthemeloadtemplate function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the...

9.8CVSS0.76761EPSS
Exploits12References2
Vulnrichment
Vulnrichment
added 2025/03/28 4:22 a.m.16 views

CVE-2025-2294 Kubio AI Page Builder <= 2.5.1 - Unauthenticated Local File Inclusion

The Kubio AI Page Builder plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.5.1 via thekubiohybridthemeloadtemplate function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the...

9.8CVSS8.2AI score0.76761EPSS
Exploits12References2
CNNVD
CNNVD
added 2025/03/28 12:0 a.m.9 views

WordPress plugin Kubio AI Page Builder 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

9.8CVSS8.6AI score0.76761EPSS
Exploits12References3
GithubExploit
GithubExploit
added 2025/03/27 7:9 p.m.542 views

Exploit for CVE-2025-2294

🚨 Kubio AI Page Builder = 2.5.1 - Unauthenticated Local File...

9.8CVSS8.4AI score0.76761EPSS
Exploits12
CVE
CVE
added 2025/01/18 5:33 a.m.47 views

CVE-2024-13516

CVE-2024-13516 affects Kubio AI Page Builder for WordPress. Connected documents confirm a Reflected Cross-Site Scripting flaw exploitable via the message parameter in all versions up to 2.3.5, with unauthenticated user interaction required to trigger execution of injected scripts. The issue is ca...

6.1CVSS6.4AI score0.00281EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/18 5:33 a.m.14 views

CVE-2024-13516 Kubio AI Page Builder <= 2.3.5 - Reflected Cross-Site Scripting

The Kubio AI Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'message' parameter in all versions up to, and including, 2.3.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS0.00281EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/18 5:33 a.m.7 views

CVE-2024-13516 Kubio AI Page Builder <= 2.3.5 - Reflected Cross-Site Scripting

The Kubio AI Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'message' parameter in all versions up to, and including, 2.3.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS6AI score0.00281EPSS
Exploits0References2
Rows per page
Query Builder