10 matches found
EUVD-2024-44863
Malicious code in bioql PyPI...
CVE-2024-50434
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehorse NewsCard newscard.This issue affects NewsCard: from n/a through = 1.3...
CVE-2024-50434
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Theme Horse NewsCard.This issue affects NewsCard: from n/a through 1.3...
CVE-2024-50434 WordPress NewsCard theme <= 1.3 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehorse NewsCard newscard.This issue affects NewsCard: from n/a through = 1.3...
CVE-2024-50434 WordPress NewsCard theme <= 1.3 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehorse NewsCard newscard.This issue affects NewsCard: from n/a through = 1.3...
CVE-2024-50434
CVE-2024-50434 : Local File Inclusion in WordPress Theme NewsCard (versions <= 1.3) due to improper control of filename in include/require statements. This may enable an unauthenticated attacker to include arbitrary local files via crafted input, potentially leading to code execution. A fix is...
WordPress plugin NewsCard 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
PT-2024-34209
Name of the Vulnerable Software and Affected Versions: Theme Horse NewsCard versions 1.3 and earlier Description: The issue is related to an improper control of filename for include/require statement in PHP, known as 'PHP Remote File Inclusion'. This allows for potential remote code execution...
WordPress NewsCard theme <= 1.3 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by tahu.datar Patchstack Alliance in WordPress Theme NewsCard versions = 1.3...
WordPress NewsCard Theme <= 1.3 is vulnerable to Local File Inclusion
Software NewsCard Type Theme Vulnerable versions = 1.3 Fixed in 1.4 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-50434 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID ddf0621fd895 Credits tahu.datar Required privilege Unauthenticated...