CVE-2025-69100 WordPress North theme <= 5.7.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes North north-wp allows PHP Local File Inclusion.This issue affects North: from n/a through = 5.7.5...

CVE-2025-69100

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes North north-wp allows PHP Local File Inclusion.This issue affects North: from n/a through = 5.7.5...

CVE-2025-69100

CVE-2025-69100 corresponds to a Local File Inclusion (LFI) in the WordPress theme North (North: &lt;= 5.7.5) due to Improper Control of Filename for Include/Require in PHP. The incident is publicly documented by NVD/Red Hat/CVE listings, with CVSS v3.1 base score 8.1 (Network, high severity, no p...

CVE-2025-69099

Deserialization of Untrusted Data vulnerability in fuelthemes North north-wp allows Object Injection.This issue affects North: from n/a through = 5.7.5...

CVE-2025-69099 WordPress North theme <= 5.7.5 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in fuelthemes North north-wp allows Object Injection.This issue affects North: from n/a through = 5.7.5...

WordPress plugin North security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There wa...

PT-2026-4169

Deserialization of Untrusted Data vulnerability in fuelthemes North north-wp allows Object Injection.This issue affects North: from n/a through = 5.7.5...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004060)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004060 advisory. An issue was discovered in splithugepmd in mm/hugememory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access becau...

EUVD-2020-30809

Nagios XI versions prior to 5.7.5 contain a SQL injection vulnerability in the SNMP Trap Interface edit page. Exploitation requires an account with administrative privileges to access the affected interface. A user with administrative access could supply crafted input that is not properly...

CVE-2020-36869 Nagios XI < 5.7.5 SQL injection via SNMP Trap Interface Edit Page

Nagios XI versions prior to 5.7.5 contain a SQL injection vulnerability in the SNMP Trap Interface edit page. Exploitation requires an account with administrative privileges to access the affected interface. A user with administrative access could supply crafted input that is not properly...

External Control of Assumed-Immutable Web Parameter

Overview craftcms/cms is a content management system. Affected versions of this package are vulnerable to External Control of Assumed-Immutable Web Parameter due to missing sanitization of the return URL requested by the client. This allows an attacker to introduce arbitrary values to a known loc...

WordPress Element Pack Elementor Addons plugin <= 5.7.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Robert DeVore Patchstack Alliance in WordPress Plugin Element Pack Elementor Addons versions = 5.7.5...

CVE-2023-39777

A cross-site scripting XSS vulnerability in the Admin Control Panel of vBulletin 5.7.5 and 6.0.0 allows attackers to execute arbitrary web scripts or HTML via the /login.php?do=login url parameter...

vBulletin Cross-Site Scripting Vulnerability

vBulletin is an open source Web forum program based on PHP and MySQL from Internetbrands and vbulletinsolutions in the United States. A security vulnerability exists in vBulletin version 5.7.5, 6.0.0. An attacker can exploit this vulnerability to execute arbitrary Web script or HTML via the...

CVE-2021-24575

creationtimestamp| type| source ---|---|--- 2021-11-08 20:29:26+00:00| seen| https://t.me/cibsecurity/31997...

UBUNTU-CVE-2020-29368

An issue was discovered in splithugepmd in mm/hugememory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1...

CVE-2020-27990

Nagios XI before 5.7.5 is vulnerable to XSS in the Deployment tool add agent...

Nagios XI 跨站脚本漏洞

Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting and rich data visualization. A cross-site scripting vulnerability exists in the "Manage Users" username field in Nagios XI versions prior to 5.7.5. No details of t...

Nagios XI 跨站脚本漏洞

Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting and rich data visualization. A cross-site scripting vulnerability exists in the Deploy tool Add Proxy in Nagios XI versions prior to 5.7.5. No details of the...