170 matches found
PT-2026-31594
Name of the Vulnerable Software and Affected Versions Marimo versions prior to 0.23.0 Description A pre-authentication remote code execution issue exists in the reactive Python notebook framework. The terminal WebSocket endpoint "/terminal/ws" lacks authentication validation, allowing an...
CVE-2026-22418
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...
EUVD-2026-9547
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...
CVE-2026-22418
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...
CVE-2026-22418 WordPress Great Lotus theme <= 1.3.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...
CVE-2026-22418 WordPress Great Lotus theme <= 1.3.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...
CVE-2026-22418
CVE-2026-22418 affects the Great Lotus WordPress theme (versions up to and including 1.3.1). The issue is Local File Inclusion caused by improper control of the filename in PHP include/require statements. Public details indicate a high-severity impact (CVE CVSS score 8.1) with potential exposure ...
WordPress plugin Great Lotus 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
PT-2026-23168
Name of the Vulnerable Software and Affected Versions AncoraThemes Great Lotus versions through 1.3.1 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of...
WordPress Great Lotus theme <= 1.3.1 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Great Lotus versions = 1.3.1...
PT-2026-7018
Name of the Vulnerable Software and Affected Versions Great Developers Certificate Generation System versions prior to 97171bb0e5e22e52eacf4e4fa81773e5f3cffb73 Description A flaw exists in Great Developers Certificate Generation System that allows for operating system command injection. The issue...
Malicious code in great-cyan-koi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d79bead203127cff55897677ee27bc4b303765183b5983958974d3295bad368e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-117341
Malicious code in great-cyan-koi npm...
Malicious code in great_scallop_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ac26a2ff0281f0c4b28db271f87315f7654ac601edef8e00bef6595b19e7a99 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-91504
Malicious code in greatmeerkatz3n npm...
EUVD-2025-76722
Malicious code in greatalpaca-silentdev npm...
EUVD-2025-76721
Malicious code in greatbass-appteadev npm...
EUVD-2025-81759
Malicious code in greatdove0xrequest npm...
EUVD-2025-70148
Malicious code in greathedgehogz3n npm...
EUVD-2025-54065
Malicious code in great-aqua-loon npm...