CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2025/11/07 3:54 p.m.•1 views

CVE-2025-48290

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in bslthemes Kinsley kinsley allows PHP Local File Inclusion.This issue affects Kinsley: from n/a through = 3.4.4...

8.1CVSS7.1AI score0.00124EPSS

Exploits0References1

NVD•added 2025/11/06 4:15 p.m.•1 views

CVE-2025-48290

8.1CVSS0.00124EPSS

Exploits0References1

EUVD•added 2025/11/06 3:53 p.m.•2 views

EUVD-2025-38017

6.2AI score0.00124EPSS

Exploits0References2

Vulnrichment•added 2025/11/06 3:53 p.m.•1 views

CVE-2025-48290 WordPress Kinsley theme <= 3.4.4 - Local File Inclusion vulnerability

8.1CVSS6.3AI score0.00124EPSS

Exploits0References1

Cvelist•added 2025/11/06 3:53 p.m.•5 views

CVE-2025-48290 WordPress Kinsley theme <= 3.4.4 - Local File Inclusion vulnerability

8.1CVSS0.00124EPSS

Exploits0References1

CVE•added 2025/11/06 3:53 p.m.•8 views

CVE-2025-48290

CVE-2025-48290 affects the WordPress Kinsley theme (and related WordPress ecosystem references) up to version 3.4.4, due to improper control of filenames for include/require statements, enabling Local File Inclusion (LFI). Root cause: PHP filename handling flaw in the Kinsley theme’s include/requ...

8.1CVSS6.3AI score0.00124EPSS

Exploits0References1

CNNVD•added 2025/11/06 12:0 a.m.•1 views

WordPress plugin Kinsley 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.3AI score0.00124EPSS

Exploits0References1