CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1142 matches found

NVD•added 2025/08/28 1:16 p.m.•2 views

CVE-2025-53247

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in wpinterface BlogMarks blogmarks allows PHP Local File Inclusion.This issue affects BlogMarks: from n/a through = 1.0.8...

8.1CVSS0.00404EPSS

Exploits0References1

NVD•added 2025/08/28 1:16 p.m.•2 views

CVE-2025-53227

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in unfoldwp Magazine Saga magazine-saga allows PHP Local File Inclusion.This issue affects Magazine Saga: from n/a through = 1.2.7...

8.1CVSS0.00393EPSS

Exploits0References1

NVD•added 2025/08/28 1:16 p.m.•2 views

CVE-2025-49405

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Favethemes Houzez allows PHP Local File Inclusion.This issue affects Houzez: from n/a before 4.1.4...

4.3CVSS0.00244EPSS

Exploits0References1

CVE•added 2025/08/28 12:37 p.m.•12 views

CVE-2025-53326

CVE-2025-53326 describes an Unauthenticated Local File Inclusion in the WordPress Gutenify plugin (CodeYatri Gutenify) due to Improper Control of Filename for Include/Require Statements. Affected versions are Gutenify up to 1.5.6 (and earlier references show up to 1.5.4 in some advisories). The C...

7.5CVSS5.9AI score0.00445EPSS

Exploits0References1

CVE•added 2025/08/28 12:37 p.m.•9 views

CVE-2025-53248

CVE-2025-53248 affects the WordPress theme Eximious Magazine (Magazine: versions up to 1.2.2). The issue is an improper control of filename for Include/Require statements in PHP, enabling Local File Inclusion (LFI). Public sources consistently identify Eximious Magazine <= 1.2.2 as vulnerable ...

8.1CVSS5.9AI score0.00404EPSS

Exploits0References1

CVE•added 2025/08/28 12:37 p.m.•11 views

CVE-2025-53216

CVE-2025-53216 affects ThemeUniver Glamer (WordPress theme)

8.1CVSS5.9AI score0.00404EPSS

Exploits0References1

Vulnrichment•added 2025/08/28 12:37 p.m.•2 views

CVE-2025-49383 WordPress Neresa Theme <= 1.3 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CocoBasic Neresa allows PHP Local File Inclusion. This issue affects Neresa: from n/a through 1.3...

8.1CVSS7.4AI score0.00393EPSS

Exploits0References1

Positive Technologies•added 2025/08/28 12:0 a.m.•3 views

PT-2025-35058

Name of the Vulnerable Software and Affected Versions: TieLabs Jannah versions through 7.4.1 Description: The software contains an Improper Control of Filename for Include/Require Statement, leading to a PHP Local File Inclusion issue. Recommendations: Update Jannah to a version later than 7.4.1...

8.1CVSS6.4AI score0.00393EPSS

Exploits0References4

Positive Technologies•added 2025/08/28 12:0 a.m.•2 views

PT-2025-35052

Name of the Vulnerable Software and Affected Versions: BlogMarks versions n/a through 1.0.8 Description: A PHP Local File Inclusion issue exists in WPInterface BlogMarks due to improper control of filename for include/require statements. This allows for potential exploitation through PHP Remote...

8.1CVSS6.5AI score0.00404EPSS

Exploits0References4

Positive Technologies•added 2025/08/28 12:0 a.m.•1 views

PT-2025-35043

Name of the Vulnerable Software and Affected Versions: Glamer versions through 1.0.2 Description: The software contains an Improper Control of Filename for Include/Require Statement, specifically a PHP Local File Inclusion issue. Recommendations: Update to a version beyond 1.0.2...

8.1CVSS6.5AI score0.00404EPSS

Exploits0References3

Positive Technologies•added 2025/08/28 12:0 a.m.•2 views

PT-2025-35062

Name of the Vulnerable Software and Affected Versions: gavias Kipso versions through 1.3.4 Description: The software contains an Improper Control of Filename for Include/Require Statement 'PHP Remote File Inclusion' vulnerability, which allows for PHP Local File Inclusion. Recommendations: Update...

8.1CVSS6.5AI score0.00404EPSS

Exploits0References4

RedhatCVE•added 2025/08/22 8:31 a.m.•3 views

CVE-2025-48149

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in dedalx Cook cookandmeal allows PHP Local File Inclusion.This issue affects Cook: from n/a through = 1.2.3...

8.1CVSS5.9AI score0.00484EPSS

Exploits0References1

RedhatCVE•added 2025/08/22 8:30 a.m.•2 views

CVE-2025-53198

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in favethemes Houzez houzez allows PHP Local File Inclusion.This issue affects Houzez: from n/a through = 4.0.4...

8.1CVSS5.9AI score0.00491EPSS

Exploits0References1

RedhatCVE•added 2025/08/22 8:30 a.m.•1 views

CVE-2025-53207

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks allows PHP Local File Inclusion.This issue affects WP Travel Gutenberg Blocks: from n/a through = 3.9.0...

8.1CVSS5.9AI score0.00393EPSS

Exploits0References1

NVD•added 2025/08/20 8:15 a.m.•1 views

CVE-2025-53210

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in bdthemes ZoloBlocks zoloblocks allows PHP Local File Inclusion.This issue affects ZoloBlocks: from n/a through = 2.3.2...

7.5CVSS0.00477EPSS

Exploits0References1

NVD•added 2025/08/20 8:15 a.m.•3 views

CVE-2025-53198

8.1CVSS0.00491EPSS

Exploits0References1

ATTACKERKB•added 2025/08/20 8:3 a.m.•2 views

CVE-2025-49438

Deserialization of Untrusted Data vulnerability in Max Chirkov Simple Login Log allows Object Injection. This issue affects Simple Login Log: from n/a through 1.1.3...

8.1CVSS5.2AI score0.00374EPSS

Exploits0References3

CVE•added 2025/08/20 8:3 a.m.•27 views

CVE-2025-48149

CVE-2025-48149 affects the WordPress Cook&Meal theme (versions

8.1CVSS5.9AI score0.00484EPSS

Exploits0References1

Vulnrichment•added 2025/08/20 8:3 a.m.•2 views

CVE-2025-48149 WordPress Cook&Meal <= 1.2.3 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in dedalx Cook&Meal cookandmeal allows PHP Local File Inclusion.This issue affects Cook&Meal: from n/a through = 1.2.3...

8.1CVSS5.3AI score0.00484EPSS

Exploits0References1

Vulnrichment•added 2025/08/20 8:3 a.m.•1 views

CVE-2025-48157 WordPress Formality <= 1.5.9 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Michele Giorgi Formality allows PHP Local File Inclusion. This issue affects Formality: from n/a through 1.5.9...

8.1CVSS7.4AI score0.02042EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by