Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/06/12 1:19 p.m.7 views

CVE-2025-49454

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in LoftOcean TinySalt tinysalt allows PHP Local File Inclusion.This issue affects TinySalt: from n/a through 3.10.0...

8.1CVSS7.2AI score0.00537EPSS
Exploits0References1
Circl
Circl
added 2025/06/10 1:30 p.m.12 views

CVE-2025-49454

creationtimestamp| type| source ---|---|--- 2025-06-10 13:30:07+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17878 2025-06-10 15:18:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrb6uraelz2e...

8.1CVSS7.9AI score0.00537EPSS
Exploits0References2
NVD
NVD
added 2025/06/10 1:15 p.m.7 views

CVE-2025-49454

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in LoftOcean TinySalt tinysalt allows PHP Local File Inclusion.This issue affects TinySalt: from n/a through 3.10.0...

8.1CVSS0.00537EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/10 12:44 p.m.6 views

CVE-2025-49454 WordPress TinySalt theme < 3.10.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in LoftOcean TinySalt tinysalt allows PHP Local File Inclusion.This issue affects TinySalt: from n/a through 3.10.0...

8.1CVSS7.9AI score0.00537EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 12:44 p.m.19 views

CVE-2025-49454 WordPress TinySalt theme < 3.10.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in LoftOcean TinySalt tinysalt allows PHP Local File Inclusion.This issue affects TinySalt: from n/a through 3.10.0...

8.1CVSS0.00537EPSS
Exploits0References1
CVE
CVE
added 2025/06/10 12:44 p.m.50 views

CVE-2025-49454

CVE-2025-49454 is a Local File Inclusion in the LoftOcean TinySalt WordPress theme (pre-3.10.0) caused by improper control of filenames for PHP include/require statements. The vulnerability enables PHP Local File Inclusion due to referencing an attacker-controlled filename, as reported across mul...

8.1CVSS7.2AI score0.00537EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/06/09 12:0 a.m.8 views

WordPress TinySalt Theme < 3.10.0 is vulnerable to Local File Inclusion

Software TinySalt Type Theme Vulnerable versions 3.10.0 Fixed in 3.10.0 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-49454 Patch priority High CVSS severity High 8.1 Developer LoftOcean PSID f11131feed0e Credits Bonds Required privilege Unauthenticated Published 9...

8.1CVSS7.2AI score0.00537EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder