294 matches found
WordPress Catch Dark Mode plugin file inclusion vulnerability
WordPress Catch Dark Mode plugin is an official plugin for enabling dark mode in WordPress websites, offering a wide range of customization options and pre-built theme solutions. The WordPress Catch Dark Mode plugin suffers from a file inclusion vulnerability that stems from a local file inclusio...
CVE-2025-10143
The Catch Dark Mode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.0 via the 'catchdarkmode' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary .php files on t...
CVE-2025-10143 Catch Dark Mode <= 2.0 - Authenticated (Contributor+) Local File Inclusion
The Catch Dark Mode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.0 via the 'catchdarkmode' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary .php files on t...
CVE-2025-10143
CVE-2025-10143 affects the WordPress plugin Catch Dark Mode. All versions up to and including 2.0 are vulnerable to Local File Inclusion via the catch_dark_mode shortcode, allowing authenticated users with Contributor-level access or higher to include and execute arbitrary PHP files on the server...
WordPress plugin Catch Dark Mode 安全漏洞
WordPress Catch Dark Mode plugin is an official plugin for enabling dark mode in WordPress websites, offering a wide range of customization options and pre-built theme solutions. The WordPress Catch Dark Mode plugin suffers from a file inclusion vulnerability that stems from a local file inclusio...
WordPress Catch Dark Mode plugin <= 2.0 - Authenticated (Contributor+) Local File Inclusion vulnerability
Authenticated Contributor+ Local File Inclusion vulnerability discovered by zaim in WordPress Plugin Catch Dark Mode versions = 2.0...
Linux Distros Unpatched Vulnerability : CVE-2024-9026
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, when using PHP-FPM SAPI and it is configured to catch workers output through...
Malicious code in awk-web-catch-double-compile (npm)
The package awk-web-catch-double-compile was found to contain malicious code...
Malicious code in cloud-iota-table-pipe-catch (npm)
The package cloud-iota-table-pipe-catch was found to contain malicious code...
Malicious code in minify-catch-function-object-epsilon (npm)
The package minify-catch-function-object-epsilon was found to contain malicious code...
Malicious code in mock-uglify-short-char-catch (npm)
The package mock-uglify-short-char-catch was found to contain malicious code...
MAL-2025-15327 Malicious code in bad-catch-stack-compile-query (npm)
The package bad-catch-stack-compile-query was found to contain malicious code...
Malicious code in bad-catch-stack-compile-query (npm)
The package bad-catch-stack-compile-query was found to contain malicious code...
Malicious code in catch-secure-user-benchmark-scale (npm)
The package catch-secure-user-benchmark-scale was found to contain malicious code...
Malicious code in try-catch-core-2 (npm)
The package try-catch-core-2 was found to contain malicious code...
Malicious code in phi-catch-omega-deserialize-cloud (npm)
The package phi-catch-omega-deserialize-cloud was found to contain malicious code...
Malicious code in omega-old-catch-report-sanitize (npm)
The package omega-old-catch-report-sanitize was found to contain malicious code...
MAL-2025-22252 Malicious code in hash-query-string-assert-catch (npm)
The package hash-query-string-assert-catch was found to contain malicious code...
MAL-2025-16661 Malicious code in catch-secure-user-benchmark-scale (npm)
The package catch-secure-user-benchmark-scale was found to contain malicious code...
MAL-2025-28211 Malicious code in omega-old-catch-report-sanitize (npm)
The package omega-old-catch-report-sanitize was found to contain malicious code...