Lucene search
K

66 matches found

Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.6 views

PT-2025-53911

Name of the Vulnerable Software and Affected Versions Mikado-Themes Backpack Traveler versions through 2.10.3 Description An authorization bypass exists in Mikado-Themes Backpack Traveler due to incorrectly configured access control security levels. This allows exploitation through a...

6.6AI score0.00185EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/12/29 3:40 p.m.6 views

WordPress Backpack Traveler theme <= 2.10.3 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Backpack Traveler versions = 2.10.3...

5.4CVSS7AI score0.00185EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-2792

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.01311EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-3216

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.00573EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-27960

Malicious code in bioql PyPI...

8.1CVSS8AI score0.00669EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-3809

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Moodle versions 3.1 to 3.1.15 and earlier unsupported versions. The mybackpack functionality allowed setting the URL of badges, when it shou...

10CVSS7.3AI score0.00905EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/24 2:9 a.m.4 views

Malicious code in nodejs-backpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bb99e7712a778eec132a6648afa1e407630ce06d816611aade3e1e1986562f0a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/25 1:19 p.m.5 views

CVE-2025-39490

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler backpacktraveler allows PHP Local File Inclusion.This issue affects Backpack Traveler: from n/a through = 2.10.2...

8.1CVSS7.2AI score0.00669EPSS
Exploits0References1
NVD
NVD
added 2025/05/23 1:15 p.m.8 views

CVE-2025-39490

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler backpacktraveler allows PHP Local File Inclusion.This issue affects Backpack Traveler: from n/a through = 2.10.2...

8.1CVSS0.00669EPSS
Exploits0References1
OSV
OSV
added 2025/05/23 1:15 p.m.4 views

CVE-2025-39490

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler allows PHP Local File Inclusion. This issue affects Backpack Traveler: from n/a through 2.7...

8.1CVSS5.8AI score0.00669EPSS
Exploits0References1
CVE
CVE
added 2025/05/23 12:43 p.m.46 views

CVE-2025-39490

CVE-2025-39490 affects Backpack Traveler (Mikado-Themes)

8.1CVSS7.2AI score0.00669EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/23 12:43 p.m.4 views

CVE-2025-39490 WordPress Backpack Traveler <= 2.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler allows PHP Local File Inclusion. This issue affects Backpack Traveler: from n/a through 2.7...

8.1CVSS8.3AI score0.00669EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/23 12:43 p.m.14 views

CVE-2025-39490 WordPress Backpack Traveler theme <= 2.10.2 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler backpacktraveler allows PHP Local File Inclusion.This issue affects Backpack Traveler: from n/a through = 2.10.2...

8.1CVSS0.00669EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:26 a.m.8 views

CVE-2024-4756

The WP Backpack WordPress plugin through 2.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.4CVSS5.6AI score0.00333EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2025/05/23 12:0 a.m.7 views

PT-2025-22703

Name of the Vulnerable Software and Affected Versions Mikado-Themes Backpack Traveler versions n/a through 2.7 Description The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File...

8.1CVSS7.4AI score0.00669EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/23 12:0 a.m.2 views

WordPress plugin Backpack Traveler 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.1CVSS7.7AI score0.00669EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:59 p.m.8 views

CVE-2018-20962

The Backpack\CRUD Backpack component before 3.4.9 for Laravel allows XSS via the select field type...

6.1CVSS5.8AI score0.01311EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/05/21 12:15 p.m.5 views

WordPress Backpack Traveler theme <= 2.10.2 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Bonds in WordPress Theme Backpack Traveler versions = 2.10.2...

8.1CVSS6.9AI score0.00669EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/21 12:0 a.m.6 views

WordPress Backpack Traveler Theme <= 2.7 is vulnerable to Local File Inclusion

Software Backpack Traveler Type Theme Vulnerable versions = 2.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-39490 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 742d0ba975f3 Credits Bonds Required privilege Unauthenticated...

8.1CVSS6.8AI score0.00669EPSS
Exploits0References1Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/03 1:19 p.m.2 views

Malicious code in backpack-android (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
Rows per page
Query Builder