CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/11/06 6:32 p.m.•2 views

EUVD-2025-38060

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Edge-Themes Alloggio - Hotel Booking alloggio allows PHP Local File Inclusion.This issue affects Alloggio - Hotel Booking: from n/a through = 1.8...

8.1CVSS6.6AI score0.00124EPSS

NVD•added 2025/11/06 4:16 p.m.•1 views

CVE-2025-60200

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThimPress LearnPress Export Import learnpress-import-export allows PHP Local File Inclusion.This issue affects LearnPress Export Import: from n/a through = 4.1.2...

7.5CVSS0.00113EPSS

NVD•added 2025/11/06 4:16 p.m.•2 views

CVE-2025-60192

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Premmerce Premmerce Wholesale Pricing for WooCommerce premmerce-woocommerce-wholesale-pricing allows PHP Local File Inclusion.This issue affects Premmerce Wholesale Pricing for...

7.5CVSS0.00113EPSS

NVD•added 2025/11/06 4:16 p.m.•1 views

CVE-2025-58994

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in designervily Greenify greenify allows PHP Local File Inclusion.This issue affects Greenify: from n/a through = 2.2...

8.1CVSS0.00124EPSS

Vulnrichment•added 2025/11/06 3:55 p.m.•1 views

CVE-2025-62075 WordPress Simple Payment plugin <= 2.4.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ido Kobelkowsky Simple Payment simple-payment.This issue affects Simple Payment: from n/a through = 2.4.6...

7.5CVSS6.7AI score0.00127EPSS

CVE•added 2025/11/06 3:54 p.m.•5 views

CVE-2025-58995

CVE-2025-58995 affects the WordPress Leblix theme (<= 2.4) with an improper control of filenames in Include/Require, enabling Local File Inclusion. Public descriptions confirm vulnerability in Leblix

8.1CVSS6.7AI score0.00124EPSS

EUVD•added 2025/11/06 3:53 p.m.•1 views

EUVD-2025-38016

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Daman Jeet Real Time Validation for Gravity Forms real-time-validation-for-gravity-forms allows PHP Local File Inclusion.This issue affects Real Time Validation for Gravity Forms...

6.6AI score0.00113EPSS

Vulnrichment•added 2025/11/06 3:53 p.m.•3 views

CVE-2025-39466 WordPress Dør theme <= 2.4 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Dør dor allows PHP Local File Inclusion.This issue affects Dør: from n/a through = 2.4...

8.1CVSS8.4AI score0.00384EPSS

Positive Technologies•added 2025/11/06 12:0 a.m.•3 views

PT-2025-45267

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Premmerce Premmerce Product Search for WooCommerce premmerce-search allows PHP Local File Inclusion.This issue affects Premmerce Product Search for WooCommerce: from n/a through ...

Positive Technologies•added 2025/11/06 12:0 a.m.•2 views

PT-2025-45205

7.1AI score0.00113EPSS

Positive Technologies•added 2025/11/06 12:0 a.m.•3 views

PT-2025-45282

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Premmerce Premmerce premmerce allows PHP Local File Inclusion.This issue affects Premmerce: from n/a through = 1.3.19...

Positive Technologies•added 2025/11/06 12:0 a.m.•2 views

PT-2025-45281

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Alexander AnyComment anycomment allows PHP Local File Inclusion.This issue affects AnyComment: from n/a through = 0.3.6...

Positive Technologies•added 2025/11/06 12:0 a.m.•2 views

PT-2025-45316

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Academist academist.This issue affects Academist: from n/a through 1.3...

8.1CVSS7.1AI score0.0014EPSS

CNNVD•added 2025/11/06 12:0 a.m.•2 views

WordPress plugin PoloPag Pix Automático para Woocommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

7.5CVSS6.6AI score0.00113EPSS

Positive Technologies•added 2025/11/06 12:0 a.m.•3 views

PT-2025-45265

Positive Technologies•added 2025/11/06 12:0 a.m.•3 views

PT-2025-45258

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Processby Responsive Sidebar responsive-sidebar allows PHP Local File Inclusion.This issue affects Responsive Sidebar: from n/a through = 1.2.2...

7.1AI score0.00113EPSS

Vulnrichment•added 2025/10/29 8:38 a.m.•2 views

CVE-2025-64216 WordPress SmartMag theme <= 10.3.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeSphere SmartMag smart-mag allows PHP Local File Inclusion.This issue affects SmartMag: from n/a through = 10.3.0...

7.5CVSS6.7AI score0.00117EPSS

Positive Technologies•added 2025/10/29 12:0 a.m.•4 views

PT-2025-44261

Name of the Vulnerable Software and Affected Versions Majestic Support versions prior to 1.1.2 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Local File Inclusion. This allows for the inclusion of local files, potentially...

7.5CVSS7AI score0.00117EPSS

Exploits0References4

CNNVD•added 2025/10/29 12:0 a.m.•2 views

WordPress plugin Eduma 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

7.5CVSS6.6AI score0.00117EPSS