Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/11/15 6:48 a.m.11 views

CVE-2025-10686

The Creta Testimonial Showcase WordPress plugin before 1.2.4 is vulnerable to Local File Inclusion. This makes it possible for authenticated attackers, with editor-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files...

7.2CVSS7.3AI score0.00429EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/11/14 8:24 a.m.7 views

WordPress Creta Testimonial Showcase plugin < 1.2.4 - Editor+ Local File Inclusion vulnerability

Editor+ Local File Inclusion vulnerability discovered by Khaled Alenazi Nxploited in WordPress Plugin Creta Testimonial Showcase versions 1.2.4...

7.2CVSS6.7AI score0.00429EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/11/14 6:15 a.m.6 views

CVE-2025-10686

The Creta Testimonial Showcase WordPress plugin before 1.2.4 is vulnerable to Local File Inclusion. This makes it possible for authenticated attackers, with editor-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files...

7.2CVSS0.00429EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/14 6:0 a.m.2 views

CVE-2025-10686 Creta Testimonial Showcase < 1.2.4 - Editor+ Local File Inclusion

The Creta Testimonial Showcase WordPress plugin before 1.2.4 is vulnerable to Local File Inclusion. This makes it possible for authenticated attackers, with editor-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files...

6.9AI score0.00429EPSS
Exploits0References1
CVE
CVE
added 2025/11/14 6:0 a.m.19 views

CVE-2025-10686

The CVE-2025-10686 has concrete details across multiple sources: Creta Testimonial Showcase WordPress plugin prior to v1.2.4 is vulnerable to Local File Inclusion. Authenticated users with editor-level access or higher can include and execute arbitrary PHP files on the server, enabling code execu...

7.2CVSS6.9AI score0.00429EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/14 6:0 a.m.4 views

EUVD-2025-186559

The Creta Testimonial Showcase WordPress plugin before 1.2.4 is vulnerable to Local File Inclusion. This makes it possible for authenticated attackers, with editor-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files...

7.2CVSS6.8AI score0.00429EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/14 6:0 a.m.11 views

CVE-2025-10686 Creta Testimonial Showcase < 1.2.4 - Editor+ Local File Inclusion

The Creta Testimonial Showcase WordPress plugin before 1.2.4 is vulnerable to Local File Inclusion. This makes it possible for authenticated attackers, with editor-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files...

0.00429EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/14 12:0 a.m.5 views

PT-2025-46942

Name of the Vulnerable Software and Affected Versions Creta Testimonial Showcase WordPress plugin versions prior to 1.2.4 Description The Creta Testimonial Showcase WordPress plugin is susceptible to a Local File Inclusion issue. Attackers with editor-level access or higher can include and execut...

7.2CVSS7.2AI score0.00429EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/11/14 12:0 a.m.4 views

WordPress plugin Creta Testimonial Showcase 安全漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

7.2CVSS6.5AI score0.00429EPSS
Exploits0References2
Rows per page
Query Builder