12 matches found
EUVD-2025-19308
Malicious code in bioql PyPI...
EUVD-2025-17256
Malicious code in bioql PyPI...
EUVD-2025-17255
Malicious code in bioql PyPI...
CVE-2025-52814
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme BRW ova-brw allows PHP Local File Inclusion.This issue affects BRW: from n/a through = 1.8.7...
CVE-2025-52814
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme BRW ova-brw allows PHP Local File Inclusion.This issue affects BRW: from n/a through = 1.8.7...
PT-2025-27132 · Unknown · Ovatheme Brw
Name of the Vulnerable Software and Affected Versions: ovatheme BRW versions 1.7.9 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability. This allows PHP Local File...
CVE-2025-49314
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ovatheme BRW ova-brw allows Stored XSS.This issue affects BRW: from n/a through = 1.8.6...
CVE-2025-49313
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme BRW ova-brw allows PHP Local File Inclusion.This issue affects BRW: from n/a through = 1.8.6...
CVE-2025-49314
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ovatheme BRW ova-brw allows Stored XSS.This issue affects BRW: from n/a through = 1.8.6...
CVE-2025-49314
CVE-2025-49314 is an authenticated stored XSS vulnerability in BRW (Booking Rental Plugin for WordPress/WooCommerce) where improper neutralization of input during web page generation allowed stored script execution. Affected versions are BRW up to 1.8.6; the issue has been patched in 1.8.6 (BRW
CVE-2025-49313
CVE-2025-49313 describes an improper control of filename for include/require in the BRW plugin (BRW Booking Rental Plugin WooCommerce), enabling PHP Local File Inclusion via a PHP Remote File Inclusion-style flaw. Public details indicate affected software is BRW
PT-2025-24240 · Unknown · Ovatheme Brw
Name of the Vulnerable Software and Affected Versions: ovatheme BRW versions 1.8.6 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability. This allows PHP Local File...