CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8799 matches found

CVE-2025-58897

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Fermentio allows PHP Local File Inclusion. This issue affects Fermentio: from n/a through 1.5.0...

8.1CVSS5.8AI score0.00115EPSS

Exploits0References2

Vulnrichment•added 5 days ago•5 views

CVE-2025-58897 WordPress Fermentio theme <= 1.5.0 - Local File Inclusion vulnerability

8.1CVSS5.8AI score0.00115EPSS

Exploits0References1

Cvelist•added 5 days ago•32 views

CVE-2025-58707 WordPress Spin theme <= 1.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Spin allows PHP Local File Inclusion. This issue affects Spin: from n/a through 1.8...

8.1CVSS0.00115EPSS

Exploits0References1

CVE•added 5 days ago•8 views

CVE-2025-58707

The CVE-2025-58707 issue is a Local File Inclusion vulnerability in the WordPress Spin theme (Spin) versions up to 1.8. It arises from improper handling of filenames for include/require statements in a PHP program, enabling PHP LFI. Affected product: Axiomthemes Spin (WordPress Spin theme

8.1CVSS5.8AI score0.00115EPSS

Exploits0References1

ATTACKERKB•added 5 days ago•7 views

CVE-2025-58707

8.1CVSS5.8AI score0.00115EPSS

Exploits0References2

ATTACKERKB•added 5 days ago•6 views

CVE-2026-39553

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes WaveRide allows PHP Local File Inclusion. This issue affects WaveRide: from n/a through 1.4...

8.1CVSS5.8AI score0.00115EPSS

Exploits0References2

Vulnrichment•added 5 days ago•7 views

CVE-2026-39553 WordPress WaveRide theme <= 1.4 - Local File Inclusion vulnerability

8.1CVSS5.8AI score0.00115EPSS

Exploits0References1

CVE•added 5 days ago•4 views

CVE-2026-39552

CVE-2026-39552 affects the WordPress Blueprint theme prior to 1.1.5, which suffers from an Improper Control of Filename for Include/Require (PHP Local File Inclusion). The vulnerability arises from inadequate validation of included/required filenames, enabling an attacker to cause local file incl...

8.1CVSS5.8AI score0.00115EPSS

Exploits0References1

Vulnrichment•added 5 days ago•4 views

CVE-2026-39552 WordPress Blueprint theme < 1.1.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Code Supply Co. Blueprint allows PHP Local File Inclusion. This issue affects Blueprint: from n/a before 1.1.5...

8.1CVSS5.8AI score0.00115EPSS

Exploits0References1

NVD•added 5 days ago•10 views

CVE-2025-58705

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Crafti allows PHP Local File Inclusion. This issue affects Crafti: from n/a through 1.12...

8.1CVSS0.00115EPSS

Exploits0References1

NVD•added 5 days ago•9 views

CVE-2025-58024

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in UnboundStudio Accordion FAQ allows PHP Local File Inclusion. This issue affects Accordion FAQ: from n/a through 2.2.1...

7.5CVSS0.00064EPSS

Exploits0References1

NVD•added 5 days ago•8 views

CVE-2025-53440

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Confidant allows PHP Local File Inclusion. This issue affects Confidant: from n/a through 1.4...

8.1CVSS0.00115EPSS

Exploits0References1

Cvelist•added 5 days ago•33 views

CVE-2025-53440 WordPress Confidant theme <= 1.4 - Local File Inclusion vulnerability

8.1CVSS0.00115EPSS

Exploits0References1

CVE•added 5 days ago•12 views

CVE-2025-53440

CVE-2025-53440 describes a Local File Inclusion in the WordPress Confidant theme (versions <= 1.4) due to improper control of the filename for include/require in PHP. Affected component: Confidant WordPress theme. Root cause: PHP Local File Inclusion vulnerability enabling access to local file...

8.1CVSS5.8AI score0.00115EPSS

Exploits0References1

ATTACKERKB•added 5 days ago•7 views

CVE-2025-53440

8.1CVSS5.8AI score0.00115EPSS

Exploits0References2

Positive Technologies•added 5 days ago•10 views

PT-2026-45743

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Racquet allows PHP Local File Inclusion. This issue affects Racquet: from n/a through 1.12.0...

8.1CVSS5.8AI score0.00115EPSS

Exploits0References2

Positive Technologies•added 5 days ago•6 views

PT-2026-45742

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in androThemes Cookiteer allows PHP Local File Inclusion. This issue affects Cookiteer: from n/a through 1.4.8...

8.1CVSS5.8AI score0.00115EPSS

Exploits0References2

Positive Technologies•added 5 days ago•7 views

PT-2026-45740

Name of the Vulnerable Software and Affected Versions Axiomthemes Spin versions prior to 1.8 Description Improper control of filename for include/require statements in the PHP program allows for Local File Inclusion. This occurs when the application fails to properly validate the file path used i...

8.1CVSS5.8AI score0.00115EPSS

Exploits0References5

Positive Technologies•added 5 days ago•8 views

PT-2026-45741

Name of the Vulnerable Software and Affected Versions Fermentio versions prior to 1.5.1 Description Improper Control of Filename for Include/Require Statement in PHP Program allows Local File Inclusion. This occurs when the application fails to properly validate the filename used in PHP include o...

8.1CVSS5.9AI score0.00115EPSS

Exploits0References4

Positive Technologies•added 5 days ago•9 views

PT-2026-45752

8.1CVSS5.8AI score0.00115EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by