CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2025/12/18 7:22 a.m.•2 views

CVE-2025-60060 WordPress Pubzinne theme <= 1.0.12 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Pubzinne pubzinne allows PHP Local File Inclusion.This issue affects Pubzinne: from n/a through = 1.0.12...

CVE•added 2025/12/18 7:22 a.m.•8 views

CVE-2025-60058

The CVE is linked to WordPress DetailX theme versions up to 1.10.0, with a Local File Inclusion (LFI) risk caused by improper control of filenames in PHP include/require statements. Affected software: DetailX detailx (WordPress plugin/theme) <= 1.10.0. Root cause: improper filename handling en...

CVE•added 2025/12/18 7:22 a.m.•9 views

CVE-2025-60054

CVE-2025-60054 affects the WordPress OnLeash theme (AncoraThemes OnLeash) version <= 1.5.2. The vulnerability is an improper control of the filename used in PHP include/require, enabling PHP Local File Inclusion (LFI). The issue arises from how filenames are handled in the OnLeash code path, a...

EUVD•added 2025/12/18 7:22 a.m.•0 views

EUVD-2025-204132

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes MaxCube maxcube allows PHP Local File Inclusion.This issue affects MaxCube: from n/a through = 1.3.1...

8.2CVSS6.6AI score0.00415EPSS

Cvelist•added 2025/12/18 7:22 a.m.•21 views

CVE-2025-60056 WordPress Winger theme <= 1.0.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Winger winger allows PHP Local File Inclusion.This issue affects Winger: from n/a through = 1.0.16...

Cvelist•added 2025/12/18 7:22 a.m.•22 views

CVE-2025-60055 WordPress Fabrica theme <= 1.8.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Fabrica fabrica allows PHP Local File Inclusion.This issue affects Fabrica: from n/a through = 1.8.1...

Cvelist•added 2025/12/18 7:22 a.m.•20 views

CVE-2025-60053 WordPress MaxCube theme <= 1.3.1 - Local File Inclusion vulnerability

Cvelist•added 2025/12/18 7:22 a.m.•24 views

CVE-2025-60052 WordPress W&D theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes W&D wd allows PHP Local File Inclusion.This issue affects W&D: from n/a through = 1.0...

CVE•added 2025/12/18 7:22 a.m.•9 views

CVE-2025-60049

CVE-2025-60049 concerns the WordPress Soleil theme (versions

Exploits0References1Affected Software1

Cvelist•added 2025/12/18 7:22 a.m.•26 views

CVE-2025-60049 WordPress Soleil theme <= 1.17 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Soleil soleil allows PHP Local File Inclusion.This issue affects Soleil: from n/a through = 1.17...

EUVD•added 2025/12/18 7:22 a.m.•3 views

EUVD-2025-204136

8.2CVSS6.6AI score0.00415EPSS

EUVD•added 2025/12/18 7:22 a.m.•4 views

EUVD-2025-204135

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Panda panda allows PHP Local File Inclusion.This issue affects Panda: from n/a through = 1.21...

8.2CVSS6.6AI score0.00415EPSS

CVE•added 2025/12/18 7:22 a.m.•8 views

CVE-2025-60044

CVE-2025-60044 is a Local File Inclusion vulnerability in the WordPress Fribbo theme (Fribbo) version

CVE•added 2025/12/18 7:22 a.m.•9 views

CVE-2025-60042

The CVE-2025-60042 entry concerns the AncoraThemes/WordPress Chinchilla theme (versions up to 1.16). The vulnerability is described as an Improper Control of Filename for Include/Require Statement (PHP Local File Inclusion), enabling an attacker to include local files via PHP includes. Connected ...

EUVD•added 2025/12/18 7:22 a.m.•2 views

EUVD-2025-204141

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Fribbo fribbo allows PHP Local File Inclusion.This issue affects Fribbo: from n/a through = 1.1.0...

8.1CVSS6.6AI score0.00415EPSS

Vulnrichment•added 2025/12/18 7:22 a.m.•3 views

CVE-2025-60042 WordPress Chinchilla theme <= 1.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Chinchilla chinchilla allows PHP Local File Inclusion.This issue affects Chinchilla: from n/a through = 1.16...

Cvelist•added 2025/12/18 7:22 a.m.•25 views

CVE-2025-60046 WordPress HeartStar theme <= 1.0.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes HeartStar heartstar allows PHP Local File Inclusion.This issue affects HeartStar: from n/a through = 1.0.14...

Cvelist•added 2025/12/18 7:22 a.m.•26 views

CVE-2025-60042 WordPress Chinchilla theme <= 1.16 - Local File Inclusion vulnerability

EUVD•added 2025/12/18 7:22 a.m.•3 views

EUVD-2025-204142

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Wanderic wanderic allows PHP Local File Inclusion.This issue affects Wanderic: from n/a through = 1.0.10...

8.1CVSS6.6AI score0.00415EPSS