Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8834 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:31 a.m.16 views

CVE-2023-25796

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Include WP BaiDu Submit plugin = 1.2.1 versions...

5.9CVSS5.6AI score0.00369EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:49 a.m.2 views

CVE-2025-69081

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Hope charity-is-hope allows PHP Local File Inclusion.This issue affects Hope: from n/a through = 3.0.0...

8.1CVSS5.9AI score0.00412EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/01/08 4:18 p.m.3 views

CVE-2026-22521 WordPress Handmade Framework plugin <= 3.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in G5Theme Handmade Framework handmade-framework allows PHP Local File Inclusion.This issue affects Handmade Framework: from n/a through = 3.9...

7.5CVSS5.8AI score0.00383EPSS
Exploits0References1
OSV
OSVadded 2026/01/08 10:15 a.m.1 views

CVE-2025-67936

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Curly curly allows PHP Local File Inclusion.This issue affects Curly: from n/a through 3.3...

8.1CVSS5.8AI score0.00434EPSS
Exploits0References1
NVD
NVDadded 2026/01/08 10:15 a.m.3 views

CVE-2025-67935

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Optimize optimizewp allows PHP Local File Inclusion.This issue affects Optimize: from n/a through 2.4...

8.1CVSS0.00434EPSS
Exploits0References1
NVD
NVDadded 2026/01/08 10:15 a.m.3 views

CVE-2025-67934

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Wellspring wellspring allows PHP Local File Inclusion.This issue affects Wellspring: from n/a through 2.8...

8.1CVSS0.00434EPSS
Exploits0References1
NVD
NVDadded 2026/01/08 10:15 a.m.3 views

CVE-2025-67937

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Hendon hendon allows PHP Local File Inclusion.This issue affects Hendon: from n/a through 1.7...

8.1CVSS0.00434EPSS
Exploits0References1
NVD
NVDadded 2026/01/08 10:15 a.m.4 views

CVE-2025-67925

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in zozothemes Corpkit corpkit allows PHP Local File Inclusion.This issue affects Corpkit: from n/a through = 2.0...

7.5CVSS0.0047EPSS
Exploits0References1
NVD
NVDadded 2026/01/08 10:15 a.m.2 views

CVE-2025-67920

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Neo Ocular neoocular allows PHP Local File Inclusion.This issue affects Neo Ocular: from n/a through 1.2...

8.1CVSS0.00412EPSS
Exploits0References1
NVD
NVDadded 2026/01/08 10:15 a.m.4 views

CVE-2025-22707

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeMove Moody tm-moody allows PHP Local File Inclusion.This issue affects Moody: from n/a through = 2.7.3...

8.1CVSS0.00512EPSS
Exploits0References1
OSV
OSVadded 2026/01/08 10:15 a.m.1 views

CVE-2025-14430

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeMove Brook - Agency Business Creative brook allows PHP Local File Inclusion.This issue affects Brook - Agency Business Creative: from n/a through = 2.8.9...

9.8CVSS5.8AI score0.00403EPSS
Exploits0References1
NVD
NVDadded 2026/01/08 10:15 a.m.3 views

CVE-2025-12550

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jwsthemes OchaHouse ochahouse allows PHP Local File Inclusion.This issue affects OchaHouse: from n/a through = 2.2.8...

8.1CVSS0.00512EPSS
Exploits0References1
CVE
CVEadded 2026/01/08 9:17 a.m.14 views

CVE-2025-67935

CVE-2025-67935 relates to the Mikado-Themes Optimize/optimizewp WordPress theme. The issue is Local File Inclusion via Improper Control of Filename for Include/Require in PHP, enabling an attacker to include local PHP files. Affected: Optimize theme versions before 2.4. Impact is consistent with ...

8.1CVSS6.7AI score0.00434EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/01/08 9:17 a.m.2 views

CVE-2025-67936 WordPress Curly theme < 3.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Curly curly allows PHP Local File Inclusion.This issue affects Curly: from n/a through 3.3...

8.1CVSS6.7AI score0.00434EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/08 9:17 a.m.27 views

CVE-2025-67936 WordPress Curly theme < 3.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Curly curly allows PHP Local File Inclusion.This issue affects Curly: from n/a through 3.3...

8.1CVSS0.00434EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/08 9:17 a.m.23 views

CVE-2025-67935 WordPress Optimize theme < 2.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Optimize optimizewp allows PHP Local File Inclusion.This issue affects Optimize: from n/a through 2.4...

8.1CVSS0.00434EPSS
Exploits0References1
CVE
CVEadded 2026/01/08 9:17 a.m.10 views

CVE-2025-67925

CVE-2025-67925: Corpkit (ZozoThemes Corpkit WordPress theme) &lt;= 2.0 authenticated Local File Inclusion via include/require, enabling PHP Local File Inclusion. Root cause: improper handling of file paths in Corpkit; impact: arbitrary local file access. Affected Software: Corpkit - Business Cons...

7.5CVSS6.7AI score0.0047EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/01/08 9:17 a.m.0 views

CVE-2025-67925 WordPress Corpkit theme <= 2.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in zozothemes Corpkit corpkit allows PHP Local File Inclusion.This issue affects Corpkit: from n/a through = 2.0...

7.5CVSS6.7AI score0.0047EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/01/08 9:17 a.m.2 views

CVE-2025-67920 WordPress Neo Ocular theme < 1.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Neo Ocular neoocular allows PHP Local File Inclusion.This issue affects Neo Ocular: from n/a through 1.2...

8.1CVSS6.7AI score0.00412EPSS
Exploits0References1
CVE
CVEadded 2026/01/08 9:17 a.m.10 views

CVE-2025-22707

CVE-2025-22707 corresponds to a WordPress tm-moody (ThemeMove Moody) vulnerability that enables an unauthenticated Local File Inclusion (LFI) due to improper handling of include/require filename parameters. The Moody theme is listed as affected up to version 2.7.3, and the Wordfence report notes ...

8.1CVSS6.7AI score0.00512EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder