CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

8850 matches found

Tenable Nessus•added 2025/11/24 12:0 a.m.•4 views

Fedora 44 : python-mkdocs-include-markdown-plugin (2025-0ec38c29fa)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-0ec38c29fa advisory. Automatic update for python-mkdocs-include-markdown-plugin-7.2.0-1.fc44. Changelog Mon Nov 24 2025 Michel Lind - 7.2.0-1 - Update to 7.2.0 - Resolves:...

6.5CVSS5.5AI score0.00318EPSS

Exploits0References2

RedhatCVE•added 2025/11/22 12:34 p.m.•16 views

CVE-2025-66115

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in MatrixAddons Easy Invoice easy-invoice allows PHP Local File Inclusion.This issue affects Easy Invoice: from n/a through = 2.1.4...

6.6CVSS7.1AI score0.00352EPSS

Exploits0References1

NVD•added 2025/11/21 1:15 p.m.•7 views

CVE-2025-66115

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in MatrixAddons Easy Invoice easy-invoice allows PHP Local File Inclusion.This issue affects Easy Invoice: from n/a through = 2.1.4...

6.6CVSS0.00352EPSS

Exploits0References1

OSV•added 2025/11/12 8:46 p.m.•2 views

MAL-2025-179551 Malicious code in anais-papoa-0iaia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf12c5097d8119b14a5fe2d44795ec0dae5e1af22dfd66c4e8c52306d04e93e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 3:4 a.m.•4 views

Malicious code in yabbering-brown-woodpecker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca10e2c101534a9074f3fbbcbaf0f0d248630b68710eaf22ba06990173f1ab9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Vulnrichment•added 2025/11/11 3:30 a.m.•2 views

CVE-2025-11129 Include fussball.de Widgets <= 4.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'api' and 'type'

The Include Fussball.de Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'api' and 'type' parameters in all versions up to, and including, 4.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS4.7AI score0.00189EPSS

Exploits0References3

CNNVD•added 2025/11/11 12:0 a.m.•3 views

WordPress plugin Include Fussball.de Widgets 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS5.9AI score0.00189EPSS

Exploits0References3

CNVD•added 2025/11/11 12:0 a.m.•3 views

WordPress Dessau plugin file inclusion vulnerability

WordPress Dessau plugin is an extension for WordPress websites, mainly for SEO optimization and content management. WordPress Dessau plugin suffers from a file inclusion vulnerability that stems from improper control of file names for include or reference statements, which can be exploited by an...

9.8CVSS7AI score0.00506EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•2 views

CVE-2025-58994

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in designervily Greenify greenify allows PHP Local File Inclusion.This issue affects Greenify: from n/a through = 2.2...

8.1CVSS7.1AI score0.00441EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•4 views

CVE-2025-58995

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Leblix leblix allows PHP Local File Inclusion.This issue affects Leblix: from n/a through = 2.4...

8.1CVSS7.1AI score0.00428EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•2 views

CVE-2025-60204

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Josh Kohlbach WooCommerce Store Toolkit woocommerce-store-toolkit allows PHP Local File Inclusion.This issue affects WooCommerce Store Toolkit: from n/a through = 2.4.3...

7.5CVSS7.1AI score0.0037EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•2 views

CVE-2025-60196

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Clearblue Clearblue® Ovulation Calculator clearblue-ovulation-calculator allows PHP Local File Inclusion.This issue affects Clearblue® Ovulation Calculator: from n/a through =...

7.5CVSS7.1AI score0.0037EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•4 views

CVE-2025-60198

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in dedalx Saxon - Viral Content Blog & Magazine Marketing WordPress Theme saxon allows PHP Local File Inclusion.This issue affects Saxon - Viral Content Blog & Magazine Marketing...

8.1CVSS7.1AI score0.00358EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•4 views

CVE-2025-60192

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Premmerce Premmerce Wholesale Pricing for WooCommerce premmerce-woocommerce-wholesale-pricing allows PHP Local File Inclusion.This issue affects Premmerce Wholesale Pricing for...

7.5CVSS7.1AI score0.0037EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•2 views

CVE-2025-60189

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in PoloPag PoloPag - Pix Automático para Woocommerce wc-polo-payments allows PHP Local File Inclusion.This issue affects PoloPag - Pix Automático para Woocommerce: from n/a through ...

7.5CVSS7.1AI score0.0037EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•3 views

CVE-2025-60241

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Premmerce Premmerce premmerce allows PHP Local File Inclusion.This issue affects Premmerce: from n/a through = 1.3.19...

7.5CVSS7.1AI score0.0037EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•2 views

CVE-2025-60190

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Hinnerk Altenburg Immocaster WordPress Plugin immocaster allows PHP Local File Inclusion.This issue affects Immocaster WordPress Plugin: from n/a through = 1.3.6...

8.1CVSS7.1AI score0.00441EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•6 views

CVE-2025-60191

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Premmerce Premmerce Wishlist for WooCommerce premmerce-woocommerce-wishlist allows PHP Local File Inclusion.This issue affects Premmerce Wishlist for WooCommerce: from n/a throug...

7.5CVSS7.1AI score0.0037EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•3 views

CVE-2025-60240

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Alexander AnyComment anycomment allows PHP Local File Inclusion.This issue affects AnyComment: from n/a through = 0.3.6...

7.5CVSS7.1AI score0.0037EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:33 p.m.•3 views

CVE-2025-60074

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Processby Lazy Load Optimizer lazy-load-optimizer allows PHP Local File Inclusion.This issue affects Lazy Load Optimizer: from n/a through = 1.4.7...

7.5CVSS7.1AI score0.0037EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by