Lucene search
K

9 matches found

Nuclei
Nuclei
added yesterday8 views

WordPress Campress Theme <= 1.35 - Unauthenticated Local File Inclusion

Campress theme for WordPress up to 1.35 contains a local file inclusion caused by 'campresswoocommercegetajaxproducts' function, letting unauthenticated attackers include and execute arbitrary PHP files, exploit requires no authentication. id: CVE-2024-10763 info: name: WordPress Campress Theme =...

9.8CVSS7.5AI score0.03529EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/15 4:22 a.m.9 views

CVE-2024-10763

The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campresswoocommercegetajaxproducts' function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS9.8AI score0.03529EPSS
Exploits0References1
NVD
NVD
added 2025/02/13 5:15 a.m.14 views

CVE-2024-10763

The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campresswoocommercegetajaxproducts' function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS0.03529EPSS
Exploits0References2
OSV
OSV
added 2025/02/13 5:15 a.m.4 views

CVE-2024-10763

The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campresswoocommercegetajaxproducts' function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS7.8AI score0.03529EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/13 4:21 a.m.12 views

CVE-2024-10763 Campress <= 1.35 - Unauthenticated Local File Inclusion

The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campresswoocommercegetajaxproducts' function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS0.03529EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/02/13 4:21 a.m.9 views

CVE-2024-10763 Campress <= 1.35 - Unauthenticated Local File Inclusion

The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campresswoocommercegetajaxproducts' function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS7.9AI score0.03529EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/02/13 12:0 a.m.4 views

WordPress plugin Campress 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

9.8CVSS8.8AI score0.03529EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/13 12:0 a.m.4 views

PT-2025-6499

Name of the Vulnerable Software and Affected Versions Campress theme for WordPress versions up to, and including, 1.35 Description The issue allows unauthenticated attackers to include and execute arbitrary files on the server via the campress woocommerce get ajax products function, enabling the...

9.8CVSS8.7AI score0.03529EPSS
Exploits0References12
Patchstack
Patchstack
added 2025/02/12 9:11 p.m.6 views

WordPress Campress theme <= 1.35 - Unauthenticated Local File Inclusion vulnerability

Unauthenticated Local File Inclusion vulnerability discovered by István Márton in WordPress Theme Campress versions = 1.35...

9.8CVSS7AI score0.03529EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder