CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

253 matches found

NVD•added 2026/01/22 5:16 p.m.•1 views

CVE-2025-67946

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in scriptsbundle AdForest adforest allows PHP Local File Inclusion.This issue affects AdForest: from n/a through = 6.0.11...

8.1CVSS0.00222EPSS

Exploits0References1

NVD•added 2026/01/22 5:15 p.m.•1 views

CVE-2025-54003

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Depot depot allows PHP Local File Inclusion.This issue affects Depot: from n/a through = 1.16...

8.1CVSS0.00222EPSS

Exploits0References1

ATTACKERKB•added 2026/01/22 4:52 p.m.•3 views

CVE-2025-69077

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Hobo hobo allows PHP Local File Inclusion.This issue affects Hobo: from n/a through = 1.0.10...

8.1CVSS5.3AI score0.00222EPSS

Exploits0References2

ATTACKERKB•added 2026/01/22 4:52 p.m.•2 views

CVE-2025-69071

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes TanTum tantum allows PHP Local File Inclusion.This issue affects TanTum: from n/a through = 1.1.13...

8.1CVSS5.3AI score0.00066EPSS

Exploits0References2

CVE•added 2026/01/22 4:52 p.m.•16 views

CVE-2025-69065

CVE-2025-69065 — In the WordPress theme WordPress Snow Mountain (AncoraThemes) there is an issue described as an improper control of filenames for PHP Include/Require, resulting in a Local File Inclusion (LFI) vulnerability. Affected: Snow Mountain versions

8.1CVSS5.5AI score0.00124EPSS

Exploits0References1

ATTACKERKB•added 2026/01/22 4:52 p.m.•1 views

CVE-2025-69065

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Snow Mountain snowmountain allows PHP Local File Inclusion.This issue affects Snow Mountain: from n/a through = 1.4.3...

8.1CVSS5.3AI score0.00124EPSS

Exploits0References2

ATTACKERKB•added 2026/01/22 4:52 p.m.•1 views

CVE-2025-69064

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pets Land petsland allows PHP Local File Inclusion.This issue affects Pets Land: from n/a through = 1.2.8...

8.1CVSS5.3AI score0.00222EPSS

Exploits0References2

ATTACKERKB•added 2026/01/22 4:52 p.m.•2 views

CVE-2025-69005

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Search & Go search-and-go allows PHP Local File Inclusion.This issue affects Search & Go: from n/a through = 2.8...

8.1CVSS5.4AI score0.00222EPSS

Exploits0References2

Vulnrichment•added 2026/01/22 4:52 p.m.•2 views

CVE-2025-68510 WordPress Photography theme < 7.7.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeGoods Photography photography allows PHP Local File Inclusion.This issue affects Photography: from n/a through 7.7.5...

5.9AI score0.00222EPSS

Exploits0References1

ATTACKERKB•added 2026/01/22 4:51 p.m.•2 views

CVE-2025-63017

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS5.4AI score0.00067EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•6 views

PT-2026-4131

Name of the Vulnerable Software and Affected Versions goalthemes Rashy versions through 1.1.3 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of local file...

5.3AI score0.00222EPSS

Exploits0References3

Positive Technologies•added 2026/01/22 12:0 a.m.•3 views

PT-2026-4126

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in goalthemes Hyori hyori allows PHP Local File Inclusion.This issue affects Hyori: from n/a through = 1.3.6...

5.5AI score0.00222EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-4145

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Edge-Themes Eldon eldon allows PHP Local File Inclusion.This issue affects Eldon: from n/a through = 1.0...

5.5AI score0.00066EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-4125

Name of the Vulnerable Software and Affected Versions Pippo versions through 1.2.3 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of local files...

5.3AI score0.00222EPSS

Exploits0References3

RedhatCVE•added 2026/01/10 5:41 a.m.•2 views

CVE-2025-12550

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jwsthemes OchaHouse ochahouse allows PHP Local File Inclusion.This issue affects OchaHouse: from n/a through = 2.2.8...

8.1CVSS5.9AI score0.00035EPSS

Exploits0References1

RedhatCVE•added 2026/01/10 5:41 a.m.•2 views

CVE-2025-67937

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Hendon hendon allows PHP Local File Inclusion.This issue affects Hendon: from n/a through 1.7...

8.1CVSS5.9AI score0.00035EPSS

Exploits0References1

Cvelist•added 2026/01/08 9:17 a.m.•23 views

CVE-2025-67935 WordPress Optimize theme < 2.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Optimize optimizewp allows PHP Local File Inclusion.This issue affects Optimize: from n/a through 2.4...

8.1CVSS0.00035EPSS

Exploits0References1

CVE•added 2026/01/08 9:17 a.m.•7 views

CVE-2025-14430

CVE-2025-14430 affects the Brook WordPress theme (ThemeMove Brook) and is due to Improper Control of Filename for Include/Require Statement in PHP (PHP Local File Inclusion). The description indicates Brook

8.1CVSS5.9AI score0.00119EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/01/06 12:0 a.m.•2 views

PT-2026-1496

Name of the Vulnerable Software and Affected Versions Elated-Themes Frappé versions through 1.8 Description An improper control of filename for include/require statement exists in Elated-Themes Frappé, allowing for PHP Local File Inclusion. The issue involves the potential for an attacker to...

8.1CVSS6.7AI score0.00104EPSS

Exploits0References4

RedhatCVE•added 2025/12/30 5:9 p.m.•2 views

CVE-2025-68870

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in reDim GmbH CookieHint WP cookiehint-wp allows PHP Local File Inclusion.This issue affects CookieHint WP: from n/a through = 1.0.0...

7.5CVSS5.9AI score0.00114EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by