CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Positive Technologies•added 3 days ago•6 views

PT-2026-45741

Name of the Vulnerable Software and Affected Versions Fermentio versions prior to 1.5.1 Description Improper Control of Filename for Include/Require Statement in PHP Program allows Local File Inclusion. This occurs when the application fails to properly validate the filename used in PHP include o...

8.1CVSS5.9AI score0.00115EPSS

Exploits0References4

Positive Technologies•added 2026/03/13 12:0 a.m.•2 views

PT-2026-25239

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Creatives Planet Greenly Theme Addons greenly-addons allows PHP Local File Inclusion.This issue affects Greenly Theme Addons: from n/a through 8.2...

5.8AI score0.0017EPSS

Exploits0References4

RedhatCVE•added 2026/03/06 7:53 a.m.•1 views

CVE-2026-22416

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes FixTeam fixteam allows PHP Local File Inclusion.This issue affects FixTeam: from n/a through = 1.5.0...

8.1CVSS5.9AI score0.00172EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•6 views

CVE-2026-28043

CVE-2026-28043 : WordPress vulnerability in ThemeREX Healer (Doctor, Clinic & Medical WordPress Theme)

9.8CVSS5.9AI score0.00172EPSS

Exploits0References1

NVD•added 2026/02/19 9:18 p.m.•2 views

CVE-2026-27343

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in VanKarWai Airtifact airtifact allows PHP Local File Inclusion.This issue affects Airtifact: from n/a through = 1.2.91...

7.5CVSS0.0017EPSS

Exploits0References1

CNNVD•added 2025/09/26 12:0 a.m.•1 views

WordPress plugin Subscribe To Unlock Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

7.5CVSS5.8AI score0.00129EPSS

Exploits0References1

Positive Technologies•added 2025/09/26 12:0 a.m.•2 views

PT-2025-39593

Name of the Vulnerable Software and Affected Versions wpshuffle Subscribe to Download versions through 2.0.9 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion. This allows for PHP Local File Inclusion...

7.5CVSS6.7AI score0.00129EPSS

Exploits0References3

RedhatCVE•added 2025/08/22 8:31 a.m.•2 views

CVE-2025-54750

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Aman Funnel Builder by FunnelKit funnel-builder allows PHP Local File Inclusion.This issue affects Funnel Builder by FunnelKit: from n/a through = 3.11.1...

7.5CVSS5.9AI score0.00144EPSS

Exploits0References1

OSV•added 2025/04/01 6:15 a.m.•0 views

CVE-2025-30849

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in g5theme Essential Real Estate allows PHP Local File Inclusion. This issue affects Essential Real Estate: from n/a through 5.2.0...

9.8CVSS7.3AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by