Lucene search
K

170 matches found

Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.6 views

PT-2026-31594

Name of the Vulnerable Software and Affected Versions Marimo versions prior to 0.23.0 Description A pre-authentication remote code execution issue exists in the reactive Python notebook framework. The terminal WebSocket endpoint "/terminal/ws" lacks authentication validation, allowing an...

10CVSS8.2AI score0.95645EPSS
Exploits11References237
RedhatCVE
RedhatCVE
added 2026/03/06 7:53 a.m.5 views

CVE-2026-22418

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...

8.1CVSS5.8AI score0.00504EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/05 6:30 a.m.6 views

EUVD-2026-9547

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...

5.9AI score0.00504EPSS
Exploits0References2
NVD
NVD
added 2026/03/05 6:16 a.m.5 views

CVE-2026-22418

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...

8.1CVSS0.00504EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/05 5:53 a.m.3 views

CVE-2026-22418 WordPress Great Lotus theme <= 1.3.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...

8.1CVSS5.8AI score0.00504EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/05 5:53 a.m.35 views

CVE-2026-22418 WordPress Great Lotus theme <= 1.3.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Great Lotus great-lotus allows PHP Local File Inclusion.This issue affects Great Lotus: from n/a through = 1.3.1...

8.1CVSS0.00504EPSS
Exploits0References1
CVE
CVE
added 2026/03/05 5:53 a.m.13 views

CVE-2026-22418

CVE-2026-22418 affects the Great Lotus WordPress theme (versions up to and including 1.3.1). The issue is Local File Inclusion caused by improper control of the filename in PHP include/require statements. Public details indicate a high-severity impact (CVE CVSS score 8.1) with potential exposure ...

8.1CVSS5.9AI score0.00504EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.8 views

WordPress plugin Great Lotus 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.1CVSS5.8AI score0.00504EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.6 views

PT-2026-23168

Name of the Vulnerable Software and Affected Versions AncoraThemes Great Lotus versions through 1.3.1 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of...

5.8AI score0.00504EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/02/25 12:29 p.m.9 views

WordPress Great Lotus theme <= 1.3.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Great Lotus versions = 1.3.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/08 12:0 a.m.14 views

PT-2026-7018

Name of the Vulnerable Software and Affected Versions Great Developers Certificate Generation System versions prior to 97171bb0e5e22e52eacf4e4fa81773e5f3cffb73 Description A flaw exists in Great Developers Certificate Generation System that allows for operating system command injection. The issue...

7.5CVSS5.9AI score0.09902EPSS
Exploits1References6
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 3:4 a.m.2 views

Malicious code in great-cyan-koi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d79bead203127cff55897677ee27bc4b303765183b5983958974d3295bad368e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/12 3:4 a.m.1 views

EUVD-2025-117341

Malicious code in great-cyan-koi npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 8:11 p.m.2 views

Malicious code in great_scallop_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ac26a2ff0281f0c4b28db271f87315f7654ac601edef8e00bef6595b19e7a99 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/11 3:19 p.m.1 views

EUVD-2025-91504

Malicious code in greatmeerkatz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:44 a.m.5 views

EUVD-2025-76722

Malicious code in greatalpaca-silentdev npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:44 a.m.2 views

EUVD-2025-76721

Malicious code in greatbass-appteadev npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:26 a.m.2 views

EUVD-2025-81759

Malicious code in greatdove0xrequest npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:16 a.m.1 views

EUVD-2025-70148

Malicious code in greathedgehogz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 12:41 a.m.0 views

EUVD-2025-54065

Malicious code in great-aqua-loon npm...

6.6AI score
Exploits0
Rows per page
Query Builder