CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8787 matches found

EUVD•added 2026/03/20 12:31 p.m.•2 views

EUVD-2026-13659

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Melania allows PHP Local File Inclusion.This issue affects Melania: from n/a through 2.5.0...

8.1CVSS5.8AI score0.00056EPSS

Exploits0References2

NVD•added 2026/03/20 10:16 a.m.•2 views

CVE-2026-22324

8.1CVSS0.00056EPSS

Exploits0References1

ATTACKERKB•added 2026/03/20 9:36 a.m.•3 views

CVE-2026-22324

8.1CVSS5.8AI score0.00056EPSS

Exploits0References2

EUVD•added 2026/03/19 3:31 p.m.•2 views

EUVD-2026-13111

Devome GRR v4.5.0 was discovered to contain multiple authenticated SQL injection vulnerabilities in the include/session.inc.php file via the referer and user-agent...

5.8AI score0.00045EPSS

Exploits0References3

EUVD•added 2026/03/19 9:30 a.m.•3 views

EUVD-2026-13068

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ovatheme Tripgo allows PHP Local File Inclusion.This issue affects Tripgo: from n/a before 1.5.6...

8.1CVSS5.8AI score0.00172EPSS

Exploits0References2

NVD•added 2026/03/19 7:15 a.m.•4 views

CVE-2026-27093

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme Tripgo tripgo allows PHP Local File Inclusion.This issue affects Tripgo: from n/a through 1.5.6...

8.1CVSS0.00172EPSS

Exploits0References1

Cvelist•added 2026/03/19 6:41 a.m.•21 views

CVE-2026-27093 WordPress Tripgo theme < 1.5.6 - Local File Inclusion vulnerability

8.1CVSS0.00172EPSS

Exploits0References1

Positive Technologies•added 2026/03/19 12:0 a.m.•2 views

PT-2026-26277

🔴 CVE-2026-27065 - Critical Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThimPress BuilderPress allows PHP Local File Inclusion.This issue ... https://t.co/XszWrmilIG https://t.co/8VXgWUhCGf...

9.8CVSS5.8AI score0.00172EPSS

Exploits0References7

Positive Technologies•added 2026/03/19 12:0 a.m.•3 views

PT-2026-26256

8.1CVSS5.8AI score0.00172EPSS

Exploits0References3

Vulnrichment•added 2026/03/19 12:0 a.m.•0 views

CVE-2026-30711

Devome GRR v4.5.0 was discovered to contain multiple authenticated SQL injection vulnerabilities in the include/session.inc.php file via the referer and user-agent...

5.9AI score0.00045EPSS

Exploits0References2

CVE•added 2026/03/19 12:0 a.m.•3 views

CVE-2026-30711

CVE-2026-30711 affects Devome GRR v4.5.0 and describes multiple authenticated SQL injection vulnerabilities in include/session.inc.php exploitable via the referer and user-agent. The NVD entry assigns CVSS v3.1: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H with base score 8.8 (HIGH), indicating high impac...

8.8CVSS5.8AI score0.00045EPSS

Exploits0References2

CNNVD•added 2026/03/19 12:0 a.m.•3 views

Devome GRR 安全漏洞

Devome GRR is a data collection and analysis platform for forensic analysis and incident response developed by the French company Devome. Version 4.5.0 of Devome GRR contains a security vulnerability. This vulnerability stems from insufficient validation of the referer and user-agent parameters i...

8.8CVSS5.9AI score0.00045EPSS

Exploits0References2

ATTACKERKB•added 2026/03/19 12:0 a.m.•1 views

CVE-2026-30711

Devome GRR v4.5.0 was discovered to contain multiple authenticated SQL injection vulnerabilities in the include/session.inc.php file via the referer and user-agent...

5.8AI score0.00045EPSS

Exploits0References3

NVD•added 2026/03/18 6:16 p.m.•3 views

CVE-2026-30701

The web interface of the WiFi Extender WDR201A HW V2.1, FW LFMZX28040922V1.02 contains hardcoded credential disclosure mechanisms in the form of Server Side Include within multiple server-side web pages, including login.shtml and settings.shtml. These pages embed server-side execution directives...

9.1CVSS0.00107EPSS

Exploits0References2

RedhatCVE•added 2026/03/17 4:9 a.m.•2 views

CVE-2026-3312

A flaw was found in Pagure's rendering engine for reStructuredText RST files. An authenticated user can exploit an unrestricted .. include:: directive within RST files to read arbitrary internal files from the server hosting Pagure. This information disclosure vulnerability allows unauthorized...

7.7CVSS5.8AI score

Exploits0References3

OSV•added 2026/03/15 5:56 a.m.•0 views

OESA-2026-1598 libxml2 security update

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

5.9CVSS4.7AI score0.00088EPSS

Exploits0References5

EUVD•added 2026/03/13 9:31 p.m.•2 views

EUVD-2026-11917

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemetechMount Boldman boldman allows PHP Local File Inclusion.This issue affects Boldman: from n/a through = 7.7...

7.5CVSS5.8AI score0.0017EPSS

Exploits0References2

EUVD•added 2026/03/13 9:31 p.m.•2 views

EUVD-2026-11903

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Greenly greenly allows PHP Local File Inclusion.This issue affects Greenly: from n/a through = 8.1...

5.8AI score0.0017EPSS

Exploits0References2

EUVD•added 2026/03/13 9:31 p.m.•5 views

EUVD-2026-11905

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Greenly Theme Addons greenly-addons allows PHP Local File Inclusion.This issue affects Greenly Theme Addons: from n/a through 8.2...

5.8AI score0.0017EPSS

Exploits0References2

EUVD•added 2026/03/13 9:31 p.m.•1 views

EUVD-2026-11889

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in magepeopleteam WpBookingly service-booking-manager allows PHP Local File Inclusion.This issue affects WpBookingly: from n/a through = 1.2.9...

5.8AI score0.0017EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by