CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8834 matches found

NVD•added 2025/08/28 1:16 p.m.•2 views

CVE-2025-53227

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in unfoldwp Magazine Saga magazine-saga allows PHP Local File Inclusion.This issue affects Magazine Saga: from n/a through = 1.2.7...

8.1CVSS0.00393EPSS

Exploits0References1

NVD•added 2025/08/28 1:16 p.m.•2 views

CVE-2025-49405

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Favethemes Houzez allows PHP Local File Inclusion.This issue affects Houzez: from n/a before 4.1.4...

4.3CVSS0.00244EPSS

Exploits0References1

CVE•added 2025/08/28 12:37 p.m.•11 views

CVE-2025-54716

CVE-2025-54716 is a local file inclusion vulnerability in WordPress themes: Ireca (WordPress Theme, versioned up to 1.8.5). The underlying issue is Improper Control of Filename for Include/Require Statement (PHP Remote File Inclusion), enabling LFI. Affected product: Ireca

8.1CVSS5.9AI score0.00393EPSS

Exploits0References1

Vulnrichment•added 2025/08/28 12:37 p.m.•1 views

CVE-2025-54716 WordPress Ireca Theme <= 1.8.5 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme Ireca allows PHP Local File Inclusion. This issue affects Ireca: from n/a through 1.8.5...

8.1CVSS6.6AI score0.00393EPSS

Exploits0References1

Cvelist•added 2025/08/28 12:37 p.m.•9 views

CVE-2025-53576 WordPress Ovatheme Events Plugin <= 1.2.8 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme Ovatheme Events ova-events allows PHP Local File Inclusion.This issue affects Ovatheme Events: from n/a through = 1.2.8...

8.1CVSS0.00404EPSS

Exploits0References1

Vulnrichment•added 2025/08/28 12:37 p.m.•1 views

CVE-2025-53578 WordPress Kipso Theme <= 1.3.4 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in gavias Kipso allows PHP Local File Inclusion. This issue affects Kipso: from n/a through 1.3.4...

8.1CVSS7.4AI score0.00404EPSS

Exploits0References1

CVE•added 2025/08/28 12:37 p.m.•16 views

CVE-2025-53334

CVE-2025-53334 is a Local File Inclusion vulnerability in the WordPress Jannah theme (

8.1CVSS5.9AI score0.00393EPSS

Exploits0References1

CVE•added 2025/08/28 12:37 p.m.•12 views

CVE-2025-53326

CVE-2025-53326 describes an Unauthenticated Local File Inclusion in the WordPress Gutenify plugin (CodeYatri Gutenify) due to Improper Control of Filename for Include/Require Statements. Affected versions are Gutenify up to 1.5.6 (and earlier references show up to 1.5.4 in some advisories). The C...

7.5CVSS5.9AI score0.00445EPSS

Exploits0References1

Cvelist•added 2025/08/28 12:37 p.m.•10 views

CVE-2025-53328 WordPress Poll, Survey & Quiz Maker Plugin by Opinion Stage Plugin <= 19.11.0 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Opinion Stage Poll, Survey & Quiz Maker Plugin by Opinion Stage social-polls-by-opinionstage allows PHP Local File Inclusion.This issue affects Poll, Survey & Quiz Maker Plugin b...

7.5CVSS0.00417EPSS

Exploits1References1

CVE•added 2025/08/28 12:37 p.m.•9 views

CVE-2025-53248

CVE-2025-53248 affects the WordPress theme Eximious Magazine (Magazine: versions up to 1.2.2). The issue is an improper control of filename for Include/Require statements in PHP, enabling Local File Inclusion (LFI). Public sources consistently identify Eximious Magazine <= 1.2.2 as vulnerable ...

8.1CVSS5.9AI score0.00404EPSS

Exploits0References1

Vulnrichment•added 2025/08/28 12:37 p.m.•0 views

CVE-2025-53244 WordPress Magazine Elite Theme <= 1.2.4 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Unfoldwp Magazine Elite allows PHP Local File Inclusion. This issue affects Magazine Elite: from n/a through 1.2.4...

8.1CVSS7.4AI score0.00404EPSS

Exploits0References1

CVE•added 2025/08/28 12:37 p.m.•11 views

CVE-2025-53216

CVE-2025-53216 affects ThemeUniver Glamer (WordPress theme)

8.1CVSS5.9AI score0.00404EPSS

Exploits0References1

Vulnrichment•added 2025/08/28 12:37 p.m.•2 views

CVE-2025-49383 WordPress Neresa Theme <= 1.3 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CocoBasic Neresa allows PHP Local File Inclusion. This issue affects Neresa: from n/a through 1.3...

8.1CVSS7.4AI score0.00393EPSS

Exploits0References1

Cvelist•added 2025/08/28 12:37 p.m.•9 views

CVE-2025-49383 WordPress Neresa Theme <= 1.3 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CocoBasic Neresa neresa-wp allows PHP Local File Inclusion.This issue affects Neresa: from n/a through = 1.3...

8.1CVSS0.00393EPSS

Exploits0References1

Positive Technologies•added 2025/08/28 12:0 a.m.•2 views

PT-2025-35048

Name of the Vulnerable Software and Affected Versions: Unfoldwp Magazine Saga versions through 1.2.7 Description: The software contains an Improper Control of Filename for Include/Require Statement 'PHP Remote File Inclusion' issue, allowing PHP Local File Inclusion. Recommendations: Update...

8.1CVSS6.5AI score0.00393EPSS

Exploits0References4

Positive Technologies•added 2025/08/28 12:0 a.m.•3 views

PT-2025-35058

Name of the Vulnerable Software and Affected Versions: TieLabs Jannah versions through 7.4.1 Description: The software contains an Improper Control of Filename for Include/Require Statement, leading to a PHP Local File Inclusion issue. Recommendations: Update Jannah to a version later than 7.4.1...

8.1CVSS6.4AI score0.00393EPSS

Exploits0References4

Positive Technologies•added 2025/08/28 12:0 a.m.•2 views

PT-2025-35052

Name of the Vulnerable Software and Affected Versions: BlogMarks versions n/a through 1.0.8 Description: A PHP Local File Inclusion issue exists in WPInterface BlogMarks due to improper control of filename for include/require statements. This allows for potential exploitation through PHP Remote...

8.1CVSS6.5AI score0.00404EPSS

Exploits0References4

Positive Technologies•added 2025/08/28 12:0 a.m.•1 views

PT-2025-35043

Name of the Vulnerable Software and Affected Versions: Glamer versions through 1.0.2 Description: The software contains an Improper Control of Filename for Include/Require Statement, specifically a PHP Local File Inclusion issue. Recommendations: Update to a version beyond 1.0.2...

8.1CVSS6.5AI score0.00404EPSS

Exploits0References3

Positive Technologies•added 2025/08/28 12:0 a.m.•2 views

PT-2025-35053

Name of the Vulnerable Software and Affected Versions: Unfoldwp Magazine versions through 1.2.2 Description: The software contains an Improper Control of Filename for Include/Require Statement, leading to a PHP Local File Inclusion issue. Recommendations: Update Unfoldwp Magazine to a version lat...

8.1CVSS6.4AI score0.00404EPSS

Exploits0References4

Positive Technologies•added 2025/08/28 12:0 a.m.•2 views

PT-2025-35062

Name of the Vulnerable Software and Affected Versions: gavias Kipso versions through 1.3.4 Description: The software contains an Improper Control of Filename for Include/Require Statement 'PHP Remote File Inclusion' vulnerability, which allows for PHP Local File Inclusion. Recommendations: Update...

8.1CVSS6.5AI score0.00404EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by