CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2025/12/18 7:21 a.m.•25 views

CVE-2025-53430 WordPress Etta theme <= 1.14.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Etta etta allows PHP Local File Inclusion.This issue affects Etta: from n/a through = 1.14.0...

8.1CVSS0.00415EPSS

CVE•added 2025/12/18 7:21 a.m.•10 views

CVE-2025-49943

CVE-2025-49943 describes an improper control of the filename for include/require statements in the WordPress AncoraThemes Femme theme (femme) that leads to a PHP Local File Inclusion, effectively turning a reported PHP Remote File Inclusion issue into local file inclusion for versions through 1.3...

8.1CVSS6.7AI score0.00415EPSS

Vulnrichment•added 2025/12/18 7:21 a.m.•2 views

CVE-2025-52745 WordPress Farm Agrico theme <= 1.3.11 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Farm Agrico farmagrico allows PHP Local File Inclusion.This issue affects Farm Agrico: from n/a through = 1.3.11...

8.1CVSS5.5AI score0.00445EPSS

Cvelist•added 2025/12/18 7:21 a.m.•21 views

CVE-2025-49941 WordPress GlamChic theme <= 1.0.11 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes GlamChic glamchic allows PHP Local File Inclusion.This issue affects GlamChic: from n/a through = 1.0.11...

8.1CVSS0.00415EPSS

Cvelist•added 2025/12/18 7:21 a.m.•21 views

CVE-2025-49367 WordPress Monyxi theme <= 1.1.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Monyxi monyxi allows PHP Local File Inclusion.This issue affects Monyxi: from n/a through = 1.1.8...

8.1CVSS0.00445EPSS

Cvelist•added 2025/12/18 7:21 a.m.•24 views

CVE-2025-49362 WordPress Gracioza theme <= 1.0.15 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Gracioza gracioza allows PHP Local File Inclusion.This issue affects Gracioza: from n/a through = 1.0.15...

8.1CVSS0.00557EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•3 views

PT-2025-52073

Name of the Vulnerable Software and Affected Versions AncoraThemes UniTravel versions through 1.4.2 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File...

8.1CVSS6.7AI score0.00445EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52108

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes IPharm ipharm allows PHP Local File Inclusion.This issue affects IPharm: from n/a through = 1.2.3...

Positive Technologies•added 2025/12/18 12:0 a.m.•4 views

PT-2025-52080

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Pantry pantry allows PHP Local File Inclusion.This issue affects Pantry: from n/a through = 1.4...

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52111

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Panda panda allows PHP Local File Inclusion.This issue affects Panda: from n/a through = 1.21...

CNNVD•added 2025/12/18 12:0 a.m.•2 views

WordPress plugin Monyxi 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.6AI score0.00445EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52014

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Strux strux allows PHP Local File Inclusion.This issue affects Strux: from n/a through = 1.9...

7.1AI score0.00445EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52043

Name of the Vulnerable Software and Affected Versions axiomthemes Convex versions through 1.11 Description A flaw exists in axiomthemes Convex related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for unauthorized access...

8.1CVSS6.2AI score0.00415EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52038

Name of the Vulnerable Software and Affected Versions axiomthemes Smash versions through 1.7 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion. This allows for PHP Local File Inclusion. Recommendations...

8.1CVSS6.7AI score0.00415EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52078

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Stallion stallion allows PHP Local File Inclusion.This issue affects Stallion: from n/a through = 1.17...

7.1AI score0.00445EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•3 views

PT-2025-52008

Name of the Vulnerable Software and Affected Versions AncoraThemes Jack Well versions through 1.0.14 Description The software contains a PHP Local File Inclusion issue due to improper control of filename for include/require statements. This allows for the inclusion of local files. Recommendations...

8.1CVSS6.4AI score0.00415EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•4 views

PT-2025-52113

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes W&D wd allows PHP Local File Inclusion.This issue affects W&D: from n/a through = 1.0...

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52105

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Fribbo fribbo allows PHP Local File Inclusion.This issue affects Fribbo: from n/a through = 1.1.0...

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52110

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Soleil soleil allows PHP Local File Inclusion.This issue affects Soleil: from n/a through = 1.17...