CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

55 matches found

RedhatCVE•added 2025/11/07 5:33 p.m.•2 views

CVE-2025-60199

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in dedalx InHype - Blog & Magazine WordPress Theme inhype allows PHP Local File Inclusion.This issue affects InHype - Blog & Magazine WordPress Theme: from n/a through = 1.5.2...

8.1CVSS7.1AI score0.00124EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•2 views

CVE-2025-60240 WordPress AnyComment plugin <= 0.3.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Alexander AnyComment anycomment allows PHP Local File Inclusion.This issue affects AnyComment: from n/a through = 0.3.6...

7.5CVSS6.7AI score0.00113EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•1 views

CVE-2025-60201 WordPress WP Customer Area plugin <= 8.3.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in aguilatechnologies WP Customer Area customer-area allows PHP Local File Inclusion.This issue affects WP Customer Area: from n/a through = 8.3.5...

7.5CVSS5.3AI score0.00113EPSS

Exploits0References1

EUVD•added 2025/10/31 12:30 p.m.•3 views

EUVD-2025-37329

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in StylemixThemes Masterstudy masterstudy allows PHP Local File Inclusion.This issue affects Masterstudy: from n/a through 4.8.126...

6.6AI score0.00117EPSS

Exploits0References2

Cvelist•added 2025/10/22 2:32 p.m.•7 views

CVE-2025-59550 WordPress Xcare theme < 6.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in designervily Xcare xcare allows PHP Local File Inclusion.This issue affects Xcare: from n/a through 6.5...

8.1CVSS0.00118EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-24744

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00499EPSS

Exploits0References1

CVE•added 2025/08/20 8:3 a.m.•11 views

CVE-2025-48160

CVE-2025-48160 affects the WordPress Caliris theme (Caliris <= 1.5). The vulnerability is an improper control of the filename used in include/require statements (PHP Local File Inclusion), enabling local file inclusion. The CVSS 3.1 base vector indicates network attack, high impact on confiden...

8.1CVSS5.9AI score0.00158EPSS

Exploits0References1

Cvelist•added 2025/08/20 8:3 a.m.•8 views

CVE-2025-48302 WordPress FundEngine Plugin <= 1.7.4 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Roxnor FundEngine wp-fundraising-donation allows PHP Local File Inclusion.This issue affects FundEngine: from n/a through = 1.7.4...

7.5CVSS0.00157EPSS

Exploits0References1

NVD•added 2025/08/14 11:15 a.m.•8 views

CVE-2025-54689

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Urna urna allows PHP Local File Inclusion.This issue affects Urna: from n/a through = 2.5.7...

8.1CVSS0.00547EPSS

Exploits0References1

Vulnrichment•added 2025/08/14 10:34 a.m.•2 views

CVE-2025-32288 WordPress RT-Theme 18 | Extensions plugin <= 2.4 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in stmcan RT-Theme 18 | Extensions rt18-extensions allows PHP Local File Inclusion.This issue affects RT-Theme 18 | Extensions: from n/a through = 2.4...

7.5CVSS5.9AI score0.00499EPSS

Exploits0References1

CNNVD•added 2025/04/15 12:0 a.m.•1 views

WordPress plugin Booking and Rental Manager 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.5CVSS7.8AI score0.01091EPSS

Exploits0References2

ATTACKERKB•added 2025/03/27 11:15 a.m.•1 views

CVE-2025-30890

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in SuitePlugins Login Widget for Ultimate Member login-widget-for-ultimate-member allows PHP Local File Inclusion.This issue affects Login Widget for Ultimate Member: from n/a throu...

7.5CVSS7.2AI score0.01091EPSS

Exploits0References3

Positive Technologies•added 2025/02/25 12:0 a.m.•2 views

PT-2025-7880 · Unknown · Majestic Support

Name of the Vulnerable Software and Affected Versions: Majestic Support versions 1.0.0 through 1.0.6 Description: The issue affects Majestic Support, allowing PHP Local File Inclusion due to improper control of filename for include/require statement in PHP program, also known as 'PHP Remote File...

8.1CVSS9.8AI score0.00878EPSS

Exploits0References6

CNNVD•added 2025/02/18 12:0 a.m.•3 views

WordPress plugin Cookie Monster 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

8.1CVSS8.8AI score0.01131EPSS

Exploits0References2

Positive Technologies•added 2025/01/09 12:0 a.m.•2 views

PT-2025-4502 · Unknown · Roninwp Fat Event Lite

Name of the Vulnerable Software and Affected Versions: Roninwp FAT Event Lite versions 1.1 and earlier Description: The issue is related to an improper control of filename for include/require statement in a PHP program, also known as 'PHP Remote File Inclusion'. This allows PHP Local File...

8.1CVSS7AI score0.02065EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by