Lucene search
+L

30 matches found

redhatcve
redhatcve
added 2026/03/06 7:54 a.m.6 views

CVE-2026-27337

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Chronicle - Lifestyle Magazine & Blog WordPress Theme chronicle allows PHP Local File Inclusion.This issue affects Chronicle - Lifestyle Magazine & Blog WordPress...

8.1CVSS5.8AI score0.00512EPSS
Exploits0References1
euvd
euvd
added 2026/03/05 6:30 a.m.3 views

EUVD-2026-9610

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Chronicle - Lifestyle Magazine & Blog WordPress Theme chronicle allows PHP Local File Inclusion.This issue affects Chronicle - Lifestyle Magazine & Blog WordPress...

5.9AI score0.00512EPSS
Exploits0References2
nvd
nvd
added 2026/03/05 6:16 a.m.3 views

CVE-2026-27337

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Chronicle - Lifestyle Magazine & Blog WordPress Theme chronicle allows PHP Local File Inclusion.This issue affects Chronicle - Lifestyle Magazine & Blog WordPress...

8.1CVSS0.00512EPSS
Exploits0References1
cvelist
cvelist
added 2026/03/05 5:53 a.m.29 views

CVE-2026-27337 WordPress Chronicle - Lifestyle Magazine & Blog WordPress Theme theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Chronicle - Lifestyle Magazine & Blog WordPress Theme chronicle allows PHP Local File Inclusion.This issue affects Chronicle - Lifestyle Magazine & Blog WordPress...

8.1CVSS0.00512EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/03/05 5:53 a.m.3 views

CVE-2026-27337

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Chronicle - Lifestyle Magazine & Blog WordPress Theme chronicle allows PHP Local File Inclusion.This issue affects Chronicle - Lifestyle Magazine & Blog WordPress...

5.9AI score0.00512EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/03/05 5:53 a.m.2 views

CVE-2026-27337 WordPress Chronicle - Lifestyle Magazine & Blog WordPress Theme theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Chronicle - Lifestyle Magazine & Blog WordPress Theme chronicle allows PHP Local File Inclusion.This issue affects Chronicle - Lifestyle Magazine & Blog WordPress...

8.1CVSS5.8AI score0.00512EPSS
Exploits0References1
cve
cve
added 2026/03/05 5:53 a.m.33 views

CVE-2026-27337

CVE-2026-27337 is a Local File Inclusion vulnerability in the AncoraThemes Chronicle – Lifestyle Magazine & Blog WordPress Theme (Chronicle) affecting versions up to 1.0. Root cause: improper control of include/require filename handling in PHP (PHP Local File Inclusion). Exploitation details are ...

8.1CVSS5.9AI score0.00512EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/03/05 12:0 a.m.9 views

PT-2026-23231

Name of the Vulnerable Software and Affected Versions AncoraThemes Chronicle - Lifestyle Magazine & Blog WordPress Theme versions prior to 1.1 Description The AncoraThemes Chronicle WordPress theme contains a flaw related to improper control of filenames used in include/require statements,...

8.1CVSS5.8AI score0.00512EPSS
Exploits0References4
cnnvd
cnnvd
added 2026/03/05 12:0 a.m.9 views

WordPress plugin Chronicle 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

8.1CVSS5.8AI score0.00512EPSS
Exploits0References1
patchstack
patchstack
added 2026/02/25 12:28 p.m.3 views

WordPress Chronicle - Lifestyle Magazine & Blog WordPress Theme theme <= 1.0 - Local File Inclusion vulnerability

WordPress Chronicle - Lifestyle Magazine & Blog WordPress Theme theme = 1.0 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Chronicle - Lifestyle Magazine & Blog WordPress Theme versions = 1.0...

8.1CVSS5.9AI score0.00512EPSS
Exploits0Affected Software1
malwarebytes
malwarebytes
added 2024/09/30 7:10 a.m.12 views

A week in security (September 23 &#8211; September 29)

Last week on Malwarebytes Labs: Millions of Kia vehicles were vulnerable to remote attacks with just a license plate number Privacy watchdog files complaint over Firefox quietly enabling its Privacy Preserving Attribution Telegram will hand over user details to law enforcement Don’t share the vir...

7.7AI score
Exploits0
openbugbounty
openbugbounty
added 2024/01/14 2:44 p.m.4 views

larchmontchronicle.com Cross Site Scripting vulnerability OBB-3834762

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
thn
thn
added 2023/07/18 11:34 a.m.68 views

VirusTotal Data Leak Exposes Some Registered Customers' Details

Data associated with a subset of registered customers of VirusTotal, including their names and email addresses, were exposed after an employee inadvertently uploaded the information to the malware scanning platform. The security incident, which comprises a database of 5,600 names in a 313KB file,...

6.3AI score
Exploits0
thn
thn
added 2023/04/25 10:39 a.m.24 views

Google Cloud Introduces Security AI Workbench for Faster Threat Detection and Analysis

Google's cloud division is following in the footsteps of Microsoft with the launch of Security AI Workbench that leverages generative AI models to gain better visibility into the threat landscape. Powering the cybersecurity suite is Sec-PaLM, a specialized large language model LLM that's...

7.3AI score
Exploits0
openbugbounty
openbugbounty
added 2023/02/10 7:17 a.m.12 views

deccanchronicle.com Cross Site Scripting vulnerability OBB-3188106

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
openbugbounty
openbugbounty
added 2021/09/03 9:42 a.m.23 views

preview.houstonchronicle.com Cross Site Scripting vulnerability OBB-2132049

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
schneier
schneier
added 2020/12/16 1:1 p.m.34 views

Zodiac Killer Cipher Solved

The SF Chronicle is reporting more details here, and the FBI is confirming, that a Melbourne mathematician and team has decrypted the 1969 message sent by the Zodiac Killer to the newspaper. Theres no paper yet, but there are a bunch of details in the news articles. Heres an interview with one of...

2.2AI score
Exploits0
openbugbounty
openbugbounty
added 2020/08/14 3:21 a.m.6 views

profile.democratandchronicle.com Cross Site Scripting vulnerability OBB-1259431

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
carbonblack
carbonblack
added 2019/03/14 12:0 p.m.58 views

RSA Wrap Up: It’s All About The People

RSA 2019 just finished and -- as always -- what a week it was. This year was a personal milestone for me, with the week culminating in my presentation with Gary Hayslip, CISO at WebRoot, titled: “Why the Role of the CISO Sucks and What We Should Do about It.” But, before we get to Friday morning ...

6.8AI score
Exploits0
thn
thn
added 2019/03/05 8:13 a.m.1 views

Google Launches Backstory — A New Cyber Security Tool for Businesses

Google's one-year-old cybersecurity venture Chronicle today announced its first commercial product, called Backstory , a cloud-based enterprise-level threat analytics platform that has been designed to help companies quickly investigate incidents, pinpoint vulnerabilities and hunt for potential...

6.8AI score
Exploits0
Rows per page
Query Builder