CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/12/24 3:30 p.m.•1 views

EUVD-2025-205187

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Fana fana allows PHP Local File Inclusion.This issue affects Fana: from n/a through = 1.1.35...

9.8CVSS6.6AI score0.00109EPSS

EUVD•added 2025/12/24 3:30 p.m.•3 views

EUVD-2025-205271

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Nawawi Jamili Docket Cache docket-cache allows PHP Local File Inclusion.This issue affects Docket Cache: from n/a through = 24.07.03...

9.8CVSS6.6AI score0.00126EPSS

NVD•added 2025/12/24 1:16 p.m.•3 views

CVE-2025-68537

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Zota zota allows PHP Local File Inclusion.This issue affects Zota: from n/a through = 1.3.14...

7.5CVSS0.00109EPSS

CVE•added 2025/12/24 12:31 p.m.•5 views

CVE-2025-68537

CVE-2025-68537 is a WordPress theme vulnerability in Zota (Them ebeez theme family) where an authenticated attacker (Contributor+) can trigger Local File Inclusion via the Include/Require handling in PHP. Affected versions: Zota up to 1.3.14. The issue has a high impact profile (CVE‑2015‑68537, C...

7.5CVSS6.7AI score0.00109EPSS

RedhatCVE•added 2025/12/24 11:37 a.m.•4 views

CVE-2025-68560

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CodexThemes TheGem Theme Elements for Elementor thegem-elements-elementor.This issue affects TheGem Theme Elements for Elementor: from n/a through = 5.10.5.1...

7.5CVSS5.9AI score0.0014EPSS

CNNVD•added 2025/12/24 12:0 a.m.•1 views

WordPress plugin Fana 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

7.5CVSS6.5AI score0.00109EPSS

CNNVD•added 2025/12/23 12:0 a.m.•2 views

WordPress plugin Diza 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A file inclusion vulnerability exists in the WordPress Diza plugin that stems from not doing effective filtering of local file resource calls, which can be exploited by an...

7.5CVSS6.3AI score0.00109EPSS

RedhatCVE•added 2025/12/19 7:33 a.m.•2 views

CVE-2025-58890

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Playful playful allows PHP Local File Inclusion.This issue affects Playful: from n/a through = 1.19.0...

RedhatCVE•added 2025/12/19 7:33 a.m.•1 views

CVE-2025-58943

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Agricola agricola allows PHP Local File Inclusion.This issue affects Agricola: from n/a through = 1.1.0...

RedhatCVE•added 2025/12/19 7:33 a.m.•2 views

CVE-2025-49364

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Ludos Paradise ludos-paradise allows PHP Local File Inclusion.This issue affects Ludos Paradise: from n/a through = 2.1.3...

RedhatCVE•added 2025/12/19 7:33 a.m.•1 views

CVE-2025-58899

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Frame frame allows PHP Local File Inclusion.This issue affects Frame: from n/a through = 2.4.0...

RedhatCVE•added 2025/12/19 7:32 a.m.•2 views

CVE-2025-60044

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Fribbo fribbo allows PHP Local File Inclusion.This issue affects Fribbo: from n/a through = 1.1.0...

RedhatCVE•added 2025/12/19 7:32 a.m.•2 views

CVE-2025-60066

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Katelyn katelyn allows PHP Local File Inclusion.This issue affects Katelyn: from n/a through = 1.0.10...

RedhatCVE•added 2025/12/19 7:32 a.m.•1 views

CVE-2025-60060

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Pubzinne pubzinne allows PHP Local File Inclusion.This issue affects Pubzinne: from n/a through = 1.0.12...

RedhatCVE•added 2025/12/19 7:32 a.m.•2 views

CVE-2025-53442

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Rentic rentic allows PHP Local File Inclusion.This issue affects Rentic: from n/a through = 1.1...

RedhatCVE•added 2025/12/19 7:32 a.m.•1 views

CVE-2025-53429

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Exit Game exit-game allows PHP Local File Inclusion.This issue affects Exit Game: from n/a through = 1.4.3...

EUVD•added 2025/12/18 9:30 a.m.•0 views

EUVD-2025-204129

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Winger winger allows PHP Local File Inclusion.This issue affects Winger: from n/a through = 1.0.16...

8.1CVSS6.6AI score0.0011EPSS

EUVD•added 2025/12/18 9:30 a.m.•1 views

EUVD-2025-204174

8.1CVSS6.6AI score0.0011EPSS