Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8823 matches found

RedhatCVE
RedhatCVEadded 2025/09/11 4:26 p.m.3 views

CVE-2025-54709

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Sala. This issue affects Sala: from n/a through 1.1.6...

8.1CVSS5.3AI score0.00178EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-20187

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found in Moodle before version 3.10.1, 3.9.4, 3.8.7 and 3.5.16 that it was possible for site administrators to execute arbitrary PHP scripts via a PHP...

7.2CVSS7.6AI score0.00679EPSS
Exploits0References2
NVD
NVDadded 2025/09/09 5:16 p.m.1 views

CVE-2025-58983

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stefano Lissa Include Me include-me allows Stored XSS.This issue affects Include Me: from n/a through = 1.3.2...

5.9CVSS0.00043EPSS
Exploits0References1
NVD
NVDadded 2025/09/09 5:16 p.m.4 views

CVE-2025-58215

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in gavias Ziston ziston allows PHP Local File Inclusion.This issue affects Ziston: from n/a through 1.4.5...

8.1CVSS0.00158EPSS
Exploits0References1
NVD
NVDadded 2025/09/09 5:15 p.m.3 views

CVE-2025-54709

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Sala. This issue affects Sala: from n/a through 1.1.6...

8.1CVSS0.00178EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/09/09 5:8 p.m.3 views

WordPress Include Me Plugin <= 1.3.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Jihwan Moon in WordPress Plugin Include Me versions = 1.3.2...

5.9CVSS6AI score0.00043EPSS
Exploits0Affected Software1
CVE
CVEadded 2025/09/09 4:33 p.m.9 views

CVE-2025-58983

CVE-2025-58983 concerns the WordPress plugin Include Me (versions up to and including 1.3.2) with a Stored XSS vulnerability caused by improper input neutralization during web page generation. The issue affects Include Me and has been patched in version 1.3.2; mitigation is to update to a version...

5.9CVSS5.9AI score0.00043EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/09/09 4:33 p.m.7 views

CVE-2025-58983 WordPress Include Me Plugin <= 1.3.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stefano Lissa Include Me include-me allows Stored XSS.This issue affects Include Me: from n/a through = 1.3.2...

5.9CVSS0.00043EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/09/09 4:33 p.m.1 views

CVE-2025-58983 WordPress Include Me Plugin <= 1.3.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stefano Lissa Include Me allows Stored XSS. This issue affects Include Me: from n/a through 1.3.2...

5.9CVSS5.4AI score0.00043EPSS
Exploits0References1
CVE
CVEadded 2025/09/09 4:25 p.m.21 views

CVE-2025-54709

CVE-2025-54709 is a Local File Inclusion vulnerability in the WordPress Sala theme (versions

8.1CVSS5.3AI score0.00178EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2025/09/09 4:25 p.m.4 views

CVE-2025-54709

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Sala sala.This issue affects Sala: from n/a through = 1.1.6...

8.1CVSS5.8AI score0.00178EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/09/09 4:25 p.m.9 views

CVE-2025-54709 WordPress Sala Theme <= 1.1.6 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Sala. This issue affects Sala: from n/a through 1.1.6...

8.1CVSS0.00178EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/09/09 4:25 p.m.3 views

CVE-2025-54709 WordPress Sala Theme <= 1.1.6 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Sala sala.This issue affects Sala: from n/a through = 1.1.6...

8.1CVSS5.3AI score0.00178EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/09/09 12:0 a.m.2 views

PT-2025-36804

Name of the Vulnerable Software and Affected Versions: Include Me versions through 1.3.2 Description: The software contains a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for stored XSS attacks. Recommendations: Update Include Me t...

5.9CVSS5AI score0.00043EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/09/09 12:0 a.m.1 views

WordPress plugin Include Me 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...

5.9CVSS5.8AI score0.00043EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/09/09 12:0 a.m.3 views

PT-2025-36782

Name of the Vulnerable Software and Affected Versions: uxper Sala versions n/a through 1.1.6 Description: The software contains an Improper Control of Filename for Include/Require Statement, also known as a PHP Remote File Inclusion issue. This allows for the inclusion of remote files, potentiall...

8.1CVSS7.2AI score0.00178EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/09/09 12:0 a.m.3 views

PT-2025-36795

Name of the Vulnerable Software and Affected Versions: gavias Ziston affected versions not specified Description: The software contains an Improper Control of Filename for Include/Require Statement, leading to a PHP Local File Inclusion issue. This allows for the inclusion of local files within t...

8.1CVSS5.9AI score0.00158EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/09/09 12:0 a.m.2 views

PT-2025-36763

Name of the Vulnerable Software and Affected Versions: highwarden Super Store Finder versions through 6.9.7 Description: The software contains an Improper Control of Filename for Include/Require Statement 'PHP Remote File Inclusion' issue. Recommendations: Update to a version later than 6.9.7...

7.5CVSS6.5AI score0.00144EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/09/07 4:33 p.m.3 views

CVE-2025-58214

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in gavias Indutri indutri allows PHP Local File Inclusion.This issue affects Indutri: from n/a through 1.3.0...

8.1CVSS5.9AI score0.00158EPSS
Exploits0References1
NVD
NVDadded 2025/09/05 5:15 p.m.1 views

CVE-2025-58214

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in gavias Indutri indutri allows PHP Local File Inclusion.This issue affects Indutri: from n/a through 1.3.0...

8.1CVSS0.00158EPSS
Exploits0References1
Rows per page
Query Builder