CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8787 matches found

EUVD•added 2026/03/13 9:31 p.m.•1 views

EUVD-2026-11864

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Medilink-Core medilink-core allows PHP Local File Inclusion.This issue affects Medilink-Core: from n/a through 2.0.7...

5.8AI score0.0017EPSS

Exploits0References2

NVD•added 2026/03/13 7:55 p.m.•2 views

CVE-2026-32426

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themelexus Medilazar Core medilazar-core allows PHP Local File Inclusion.This issue affects Medilazar Core: from n/a through 1.4.7...

7.5CVSS0.0017EPSS

Exploits0References1

NVD•added 2026/03/13 7:54 p.m.•3 views

CVE-2026-32400

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemetechMount Boldman boldman allows PHP Local File Inclusion.This issue affects Boldman: from n/a through = 7.7...

7.5CVSS0.0017EPSS

Exploits0References1

NVD•added 2026/03/13 7:54 p.m.•1 views

CVE-2026-32369

7.5CVSS0.0017EPSS

Exploits0References1

CVE•added 2026/03/13 11:42 a.m.•6 views

CVE-2026-32426

The CVE-2026-32426 entry describes a Local File Inclusion (LFI) vulnerability in the WordPress plugin Medilazar Core (themelexus) prior to version 1.4.7 . The root cause is improper control of the filename for include/require in PHP, effectively enabling LFI. Affected software: Medilazar Core

7.5CVSS5.8AI score0.0017EPSS

Exploits0References1

ATTACKERKB•added 2026/03/13 11:42 a.m.•2 views

CVE-2026-32426

5.8AI score0.0017EPSS

Exploits0References2

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32401

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BoldGrid Client Invoicing by Sprout Invoices sprout-invoices allows PHP Local File Inclusion.This issue affects Client Invoicing by Sprout Invoices: from n/a through = 20.8.9...

5.8AI score0.00157EPSS

Exploits0References2

Cvelist•added 2026/03/13 11:42 a.m.•21 views

CVE-2026-32401 WordPress Client Invoicing by Sprout Invoices plugin <= 20.8.9 - Local File Inclusion vulnerability

7.2CVSS0.00157EPSS

Exploits0References1

Vulnrichment•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32401 WordPress Client Invoicing by Sprout Invoices plugin <= 20.8.9 - Local File Inclusion vulnerability

7.2CVSS5.8AI score0.00157EPSS

Exploits0References1

CVE•added 2026/03/13 11:42 a.m.•2 views

CVE-2026-32400

The CVE-2026-32400 entry concerns the WordPress Boldman theme by ThemetechMount, specifically versions

7.5CVSS5.8AI score0.0017EPSS

Exploits0References1

CVE•added 2026/03/13 11:42 a.m.•4 views

CVE-2026-32392

CVE-2026-32392 affects the WordPress Greenly theme (<= 8.1). The issue is an improper control of filename for PHP include/require, enabling PHP Local File Inclusion (LFI) due to PHP Remote File Inclusion behavior. Connected sources (Red Hat, NVD, CVE lists, EUVD) corroborate the same descripti...

7.5CVSS5.8AI score0.0017EPSS

Exploits0References1

Vulnrichment•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32392 WordPress Greenly theme <= 8.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Greenly greenly allows PHP Local File Inclusion.This issue affects Greenly: from n/a through = 8.1...

5.8AI score0.0017EPSS

Exploits0References1

CVE•added 2026/03/13 11:42 a.m.•4 views

CVE-2026-32393

CVE-2026-32393 concerns the WordPress plugin Greenly Theme Addons (Creatives Planet/Creatives_Planet Greenly Theme Addons) with versions older than 8.2. The issue is an Improper Control of Filename for Include/Require Statement in PHP, enabling PHP Local File Inclusion due to what is described as...

7.5CVSS5.8AI score0.0017EPSS

Exploits0References1

Cvelist•added 2026/03/13 11:42 a.m.•25 views

CVE-2026-32393 WordPress Greenly Theme Addons plugin < 8.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Greenly Theme Addons greenly-addons allows PHP Local File Inclusion.This issue affects Greenly Theme Addons: from n/a through 8.2...

7.5CVSS0.0017EPSS

Exploits0References1

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32384

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in magepeopleteam WpBookingly service-booking-manager allows PHP Local File Inclusion.This issue affects WpBookingly: from n/a through = 1.2.9...

5.8AI score0.0017EPSS

Exploits0References2

CVE•added 2026/03/13 11:42 a.m.•4 views

CVE-2026-32384

CVE-2026-32384 describes an Improper Control of Filename for Include/Require Statement (PHP Local File Inclusion) in the WordPress plugin magepeopleteam WpBookingly service-booking-manager. Affected: WpBookingly versions up to 1.2.9. Underlying issue is local file inclusion via include/require th...

7.5CVSS5.8AI score0.0017EPSS

Exploits0References1

ATTACKERKB•added 2026/03/13 11:42 a.m.•0 views

CVE-2026-32369

5.8AI score0.0017EPSS

Exploits0References2

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32364

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in redqteam Turbo Manager turbo-manager allows PHP Local File Inclusion.This issue affects Turbo Manager: from n/a through 4.0.8...

5.8AI score0.0017EPSS

Exploits0References2

CNNVD•added 2026/03/13 12:0 a.m.•2 views

WordPress plugin Turbo Manager 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There wa...

7.5CVSS5.8AI score0.0017EPSS

Exploits0References1

Positive Technologies•added 2026/03/13 12:0 a.m.•4 views

PT-2026-25247

5.8AI score0.00157EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by