CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

37 matches found

RedhatCVE•added 2026/01/10 5:41 a.m.•2 views

CVE-2025-14359

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in brandexponents Oshine allows PHP Local File Inclusion. This issue affects Oshine: from n/a before 7.3.0...

8.1CVSS5.3AI score0.00222EPSS

Exploits0References1

NVD•added 2026/01/08 10:15 a.m.•1 views

CVE-2025-14359

8.1CVSS0.00222EPSS

Exploits0References1

Cvelist•added 2026/01/08 9:17 a.m.•24 views

CVE-2025-14359 WordPress Oshine theme < 7.3.0 - Local File Inclusion vulnerability

8.1CVSS0.00222EPSS

Exploits0References1

ATTACKERKB•added 2026/01/08 9:17 a.m.•1 views

CVE-2025-14359

8.1CVSS5.3AI score0.00222EPSS

Exploits0References4

Vulnrichment•added 2026/01/08 9:17 a.m.•1 views

CVE-2025-14359 WordPress Oshine theme <= 7.2.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in brandexponents Oshine oshin allows PHP Local File Inclusion.This issue affects Oshine: from n/a through = 7.2.7...

8.1CVSS6.7AI score0.00222EPSS

Exploits0References1

CVE•added 2026/01/08 9:17 a.m.•10 views

CVE-2025-14359

CVE-2025-14359 corresponds to an unauthenticated Local File Inclusion in the WordPress theme Oshine (Oshin) before or at version 7.2.7, caused by improper control of filenames used in include/require in PHP. Wordfence reports this vulnerability as currently Unpatched, affecting Oshine Oshin, indi...

8.1CVSS5.3AI score0.00222EPSS

Exploits0References1

CNNVD•added 2026/01/08 12:0 a.m.•2 views

WordPress plugin Oshine 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

8.1CVSS6.4AI score0.00222EPSS

Exploits0References2

Positive Technologies•added 2026/01/08 12:0 a.m.•3 views

PT-2026-1737

Name of the Vulnerable Software and Affected Versions brandexponents Oshine oshin versions through 7.2.7 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion. This allows for PHP Local File Inclusion...

9.8CVSS6.7AI score0.00222EPSS

Exploits0References3

Patchstack•added 2026/01/07 12:53 p.m.•3 views

WordPress Oshine theme <= 7.2.7 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme Oshine versions = 7.2.7...

9.8CVSS7AI score0.00222EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-4883

Malicious code in bioql PyPI...

7.1CVSS9.1AI score0.00088EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-41223

Malicious code in bioql PyPI...

5.4CVSS9.1AI score0.0023EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-30556

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00056EPSS

Exploits0References2

RedhatCVE•added 2025/09/24 6:31 p.m.•2 views

CVE-2025-58660

Missing Authorization vulnerability in brandexponents Oshine Core oshine-core allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Oshine Core: from n/a through = 1.5.5...

5.4CVSS5.9AI score0.00056EPSS

Exploits0References1

NVD•added 2025/09/22 7:16 p.m.•1 views

CVE-2025-58660

5.4CVSS0.00056EPSS

Exploits0References1

Patchstack•added 2025/09/22 6:40 p.m.•3 views

WordPress Oshine Core Plugin <= 1.5.5 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Oshine Core versions = 1.5.5...

5.4CVSS6.7AI score0.00056EPSS

Exploits0Affected Software1

Cvelist•added 2025/09/22 6:23 p.m.•8 views

CVE-2025-58660 WordPress Oshine Core Plugin <= 1.5.5 - Broken Access Control Vulnerability

5.4CVSS0.00056EPSS

Exploits0References1

CVE•added 2025/09/22 6:23 p.m.•7 views

CVE-2025-58660

CVE-2025-58660 is a Missing Authorization vulnerability affecting the WordPress plugin Oshine Core (

5.4CVSS5.9AI score0.00056EPSS

Exploits0References1

Vulnrichment•added 2025/09/22 6:23 p.m.•2 views

CVE-2025-58660 WordPress Oshine Core Plugin <= 1.5.5 - Broken Access Control Vulnerability

5.4CVSS5.9AI score0.00056EPSS

Exploits0References1

Positive Technologies•added 2025/09/22 12:0 a.m.•2 views

PT-2025-38949

Name of the Vulnerable Software and Affected Versions brandexponents Oshine Core versions through 1.5.5 Description An authorization issue exists in brandexponents Oshine Core due to incorrectly configured access control security levels. This allows for exploitation of the system. Recommendations...

5.4CVSS6.6AI score0.00056EPSS

Exploits0References3

CNNVD•added 2025/09/22 12:0 a.m.•1 views

WordPress plugin Oshine Core 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.4CVSS6.5AI score0.00056EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by