CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-44863

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.03008EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 6:40 a.m.•2 views

CVE-2024-50434

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehorse NewsCard newscard.This issue affects NewsCard: from n/a through = 1.3...

8.8CVSS5.9AI score0.03008EPSS

Exploits0References1

OSV•added 2024/10/28 8:15 p.m.•2 views

CVE-2024-50434

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Theme Horse NewsCard.This issue affects NewsCard: from n/a through 1.3...

8.8CVSS5.8AI score

Exploits0References1

Vulnrichment•added 2024/10/28 8:1 p.m.•11 views

CVE-2024-50434 WordPress NewsCard theme <= 1.3 - Local File Inclusion vulnerability

7.5CVSS5.9AI score0.03008EPSS

Exploits0References1

Cvelist•added 2024/10/28 8:1 p.m.•14 views

CVE-2024-50434 WordPress NewsCard theme <= 1.3 - Local File Inclusion vulnerability

7.5CVSS0.03008EPSS

Exploits0References1

CVE•added 2024/10/28 8:1 p.m.•51 views

CVE-2024-50434

CVE-2024-50434 : Local File Inclusion in WordPress Theme NewsCard (versions <= 1.3) due to improper control of filename in include/require statements. This may enable an unauthenticated attacker to include arbitrary local files via crafted input, potentially leading to code execution. A fix is...

8.8CVSS5.9AI score0.03008EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/10/28 12:0 a.m.•2 views

PT-2024-34209

Name of the Vulnerable Software and Affected Versions: Theme Horse NewsCard versions 1.3 and earlier Description: The issue is related to an improper control of filename for include/require statement in PHP, known as 'PHP Remote File Inclusion'. This allows for potential remote code execution...

8.8CVSS7.7AI score0.03008EPSS

Exploits0References4

CNNVD•added 2024/10/28 12:0 a.m.•1 views

WordPress plugin NewsCard 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

7.5CVSS6.7AI score0.03008EPSS

Exploits0References1

Patchstack•added 2024/10/24 9:26 a.m.•2 views

WordPress NewsCard theme <= 1.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by tahu.datar Patchstack Alliance in WordPress Theme NewsCard versions = 1.3...

8.8CVSS7AI score0.03008EPSS

Exploits0Affected Software1

Patchstack•added 2024/10/24 12:0 a.m.•10 views

WordPress NewsCard Theme <= 1.3 is vulnerable to Local File Inclusion

Software NewsCard Type Theme Vulnerable versions = 1.3 Fixed in 1.4 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-50434 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID ddf0621fd895 Credits tahu.datar Required privilege Unauthenticated...

7.5CVSS6.8AI score0.03008EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by