CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8799 matches found

CVE•added 2025/12/18 7:21 a.m.•7 views

CVE-2025-49370

CVE-2025-49370 affects the WordPress Lymcoin theme (AncoraThemes) up to version 1.3.12. The issue is an improper control of filenames for include/require statements, enabling PHP Local File Inclusion (LFI). Affected scope includes Lymcoin versions through 1.3.12; this vulnerability is categorized...

8.1CVSS6.7AI score0.00226EPSS

Exploits0References1

CVE•added 2025/12/18 7:21 a.m.•7 views

CVE-2025-49371

CVE-2025-49371 relates to a PHP Local File Inclusion in the WordPress Strux theme (versions

8.1CVSS6.7AI score0.00226EPSS

Exploits0References1

Vulnrichment•added 2025/12/18 7:21 a.m.•1 views

CVE-2025-49370 WordPress Lymcoin theme <= 1.3.12 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Lymcoin lymcoin allows PHP Local File Inclusion.This issue affects Lymcoin: from n/a through = 1.3.12...

8.1CVSS5.5AI score0.00226EPSS

Exploits0References1

Cvelist•added 2025/12/18 7:21 a.m.•19 views

CVE-2025-49367 WordPress Monyxi theme <= 1.1.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Monyxi monyxi allows PHP Local File Inclusion.This issue affects Monyxi: from n/a through = 1.1.8...

8.1CVSS0.0011EPSS

Exploits0References1

CVE•added 2025/12/18 7:21 a.m.•7 views

CVE-2025-49369

CVE-2025-49369 affects the WordPress Lettuce theme (

8.1CVSS6.7AI score0.0011EPSS

Exploits0References1

Cvelist•added 2025/12/18 7:21 a.m.•17 views

CVE-2025-49359 WordPress ShieldGroup theme <= 2.13 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes ShieldGroup shieldgroup allows PHP Local File Inclusion.This issue affects ShieldGroup: from n/a through = 2.13...

8.1CVSS0.00226EPSS

Exploits0References1

Cvelist•added 2025/12/18 7:21 a.m.•21 views

CVE-2025-49362 WordPress Gracioza theme <= 1.0.15 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Gracioza gracioza allows PHP Local File Inclusion.This issue affects Gracioza: from n/a through = 1.0.15...

8.1CVSS0.00226EPSS

Exploits0References1

Vulnrichment•added 2025/12/18 7:21 a.m.•1 views

CVE-2025-49361 WordPress Mamita theme <= 1.0.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Mamita mamita allows PHP Local File Inclusion.This issue affects Mamita: from n/a through = 1.0.9...

8.1CVSS6.7AI score0.00226EPSS

Exploits0References1

CVE•added 2025/12/18 7:21 a.m.•6 views

CVE-2025-49363

CVE-2025-49363 concerns the WordPress Kings & Queens theme (versions up to 1.1.16). The issue is an improper control of filenames for include/require statements, enabling PHP Local File Inclusion (LFI) and related PHP Remote File Inclusion risks as described in multiple sources. The vulnerability...

8.1CVSS6.7AI score0.00226EPSS

Exploits0References1

Positive Technologies•added 2025/12/18 12:0 a.m.•1 views

PT-2025-52084

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Anubis anubis allows PHP Local File Inclusion.This issue affects Anubis: from n/a through = 1.25...

7.1AI score0.0011EPSS

Exploits0References2

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52133

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Processby Anchor smooth scroll anchor-smooth-scroll allows PHP Local File Inclusion.This issue affects Anchor smooth scroll: from n/a through = 1.0.2...

7.1AI score0.0011EPSS

Exploits0References2

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52003

Name of the Vulnerable Software and Affected Versions AncoraThemes Militarology versions through 1.0.15 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for unauthorized...

8.1CVSS6.4AI score0.00226EPSS

Exploits0References4

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52080

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Pantry pantry allows PHP Local File Inclusion.This issue affects Pantry: from n/a through = 1.4...

7.1AI score0.0011EPSS

Exploits0References2

CNNVD•added 2025/12/18 12:0 a.m.•2 views

WordPress plugin Lymcoin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.7AI score0.00226EPSS

Exploits0References1

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52105

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Fribbo fribbo allows PHP Local File Inclusion.This issue affects Fribbo: from n/a through = 1.1.0...

7.1AI score0.0011EPSS

Exploits0References2

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52033

Name of the Vulnerable Software and Affected Versions ApusTheme Greenorganic versions through 2.45 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File...

8.1CVSS6.7AI score0.0011EPSS

Exploits0References3

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52013

Name of the Vulnerable Software and Affected Versions AncoraThemes Lymcoin versions through 1.3.12 Description A flaw exists in AncoraThemes Lymcoin that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue is related to a 'PHP Remote...

8.1CVSS6.7AI score0.00226EPSS

Exploits0References3

Positive Technologies•added 2025/12/18 12:0 a.m.•1 views

PT-2025-52073

Name of the Vulnerable Software and Affected Versions AncoraThemes UniTravel versions through 1.4.2 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File...

8.1CVSS6.7AI score0.00226EPSS

Exploits0References3

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52008

Name of the Vulnerable Software and Affected Versions AncoraThemes Jack Well versions through 1.0.14 Description The software contains a PHP Local File Inclusion issue due to improper control of filename for include/require statements. This allows for the inclusion of local files. Recommendations...

8.1CVSS6.4AI score0.0011EPSS

Exploits0References3

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52035

Name of the Vulnerable Software and Affected Versions axiomthemes Harper versions through 1.13 Description A flaw exists in the handling of file inclusion within axiomthemes Harper. This issue allows for PHP Local File Inclusion. The vulnerability stems from improper control of filenames used in...

8.1CVSS6.6AI score0.0011EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by