38 matches found
EUVD-2026-2709
A clickjacking vulnerability exists in the web portal of Juniper Networks Paragon Automation Pathfinder, Planner, Insights due to the application's failure to set appropriate X-Frame-Options and X-Content-Type HTTP headers. This vulnerability allows an attacker to trick users into interacting wit...
CVE-2025-58885
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pathfinder pathfinder allows PHP Local File Inclusion.This issue affects Pathfinder: from n/a through = 1.16...
EUVD-2025-204185
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pathfinder pathfinder allows PHP Local File Inclusion.This issue affects Pathfinder: from n/a through = 1.16...
CVE-2025-58885
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pathfinder pathfinder allows PHP Local File Inclusion.This issue affects Pathfinder: from n/a through = 1.16...
CVE-2025-58885
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pathfinder pathfinder allows PHP Local File Inclusion.This issue affects Pathfinder: from n/a through = 1.16...
CVE-2025-58885 WordPress Pathfinder theme <= 1.16 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pathfinder pathfinder allows PHP Local File Inclusion.This issue affects Pathfinder: from n/a through = 1.16...
CVE-2025-58885 WordPress Pathfinder theme <= 1.16 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pathfinder pathfinder allows PHP Local File Inclusion.This issue affects Pathfinder: from n/a through = 1.16...
CVE-2025-58885
CVE-2025-58885 concerns WordPress Pathfinder theme (Pathfinder) versions through 1.16. The vulnerability is Local File Inclusion enabled by improper control of filenames for include/require statements, effectively a PHP Local File Inclusion via an improper filename check. Affected product: Ancora...
WordPress plugin Pathfinder 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
PT-2025-52061
Name of the Vulnerable Software and Affected Versions AncoraThemes Pathfinder versions through 1.16 Description A flaw exists in AncoraThemes Pathfinder that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue is related to a PHP Remo...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
EUVD-2025-198660
Malicious code in @trigo/pathfinder-ui-css npm...
Malicious code in @trigo/pathfinder-ui-css (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17172dc9e8dbb38a33e93a30996ed58f73c89d22d064635c816f92f8697a5013 The package @trigo/pathfinder-ui-css was found to contain malicious code. Source: ghsa-malware...
EUVD-2024-48611
Malicious code in bioql PyPI...
EUVD-2023-31162
Malicious code in bioql PyPI...
WordPress Pathfinder theme <= 1.16 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Pathfinder versions = 1.16...
CVE-2024-7734
An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. The impact is limited to blocking of valid IPsec VPN peers...
Hunters Announces New AI Capabilities with Pathfinder AI for Smarter SOC Automation
Boston and Tel Aviv, United States, 4th March 2025, CyberNewsWire...
CVE-2024-7734
An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. The impact is limited to blocking of valid IPsec VPN peers...
CVE-2024-7734
CVE-2024-7734 affects Phoenix Contact FL MGUARD (mGuard) devices; pathfinder TCP encapsulation service can be abused by establishing a high volume of TCP connections, causing a denial of service that blocks valid IPsec VPN peers. Public references in Red Hat and related advisories confirm unauthe...