CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

87 matches found

Cvelist•added 2025/05/19 5:15 p.m.•24 views

CVE-2025-39396 WordPress JetReviews plugin <= 2.3.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Crocoblock JetReviews jet-reviews allows PHP Local File Inclusion.This issue affects JetReviews: from n/a through = 2.3.6...

7.5CVSS0.0051EPSS

Exploits0References1

RedhatCVE•added 2025/05/09 3:24 p.m.•6 views

CVE-2025-47494

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ashan Perera EventON eventon-lite allows PHP Local File Inclusion.This issue affects EventON: from n/a through = 2.4.1...

7.5CVSS7.2AI score0.0061EPSS

Exploits0References1

Vulnrichment•added 2025/04/24 4:8 p.m.•5 views

CVE-2025-46230 WordPress Popup Builder plugin <= 1.1.35 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in GhozyLab Popup Builder easy-notify-lite allows PHP Local File Inclusion.This issue affects Popup Builder: from n/a through = 1.1.35...

7.5CVSS7.2AI score0.0061EPSS

Exploits0References1

NVD•added 2025/04/17 3:15 a.m.•22 views

CVE-2025-31340

A improper control of filename for include/require statement in PHP program vulnerability in the retrieve course Information function of Wisdom Master Pro versions 5.0 through 5.2 allows remote attackers to perform arbitrary system commands by running a malicious file...

9.9CVSS0.00392EPSS

Exploits0References1

Positive Technologies•added 2025/04/17 12:0 a.m.•5 views

PT-2025-16928 · Unknown · Wisdom Master Pro

Name of the Vulnerable Software and Affected Versions: Wisdom Master Pro versions 5.0 through 5.2 Description: A vulnerability in the retrieve course Information function of Wisdom Master Pro allows remote attackers to perform arbitrary system commands by running a malicious file due to improper...

9.9CVSS7.8AI score0.00392EPSS

Exploits0References10

CVE•added 2025/04/11 8:42 a.m.•43 views

CVE-2025-31014

CVE-2025-31014 is a verified vulnerability in the WordPress plugin Material Dashboard (Material Dashboard) described as an Authenticated Local File Inclusion via an improper control of the filename in PHP include/require statements. Affected software ranges up to version 1.4.5. Wordfence and CVE ...

7.5CVSS7.2AI score0.00879EPSS

Exploits0References1

Cvelist•added 2025/04/04 3:58 p.m.•12 views

CVE-2025-32141 WordPress MasterStudy LMS plugin <= 3.5.28 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows PHP Local File Inclusion.This issue affects MasterStudy LMS: from n/a through = 3.5.28...

8.8CVSS0.00542EPSS

Exploits0References1

CVE•added 2025/04/04 1:26 p.m.•66 views

CVE-2025-31405

CVE-2025-31405 is a PHP Local File Inclusion/Remote File Inclusion issue affecting the WordPress plugin Fami WooCommerce Compare . Affected versions are listed as from n/a through 1.0.5. Root cause per the CVE description: improper control of filename for include/require statements in PHP, enabli...

7.5CVSS7.2AI score0.00467EPSS

Exploits0References1

Cvelist•added 2025/03/27 10:55 a.m.•13 views

CVE-2025-30868 WordPress Team Manager plugin <= 2.1.23 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Maidul Team Manager wp-team-manager allows PHP Local File Inclusion.This issue affects Team Manager: from n/a through = 2.1.23...

7.5CVSS0.00931EPSS

Exploits0References1

Vulnrichment•added 2025/03/27 10:55 a.m.•8 views

CVE-2025-30814 WordPress The Post Grid plugin <= 7.7.17 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme The Post Grid the-post-grid allows PHP Local File Inclusion.This issue affects The Post Grid: from n/a through = 7.7.17...

7.5CVSS7.4AI score0.00931EPSS

Exploits0References1

NVD•added 2025/03/26 3:16 p.m.•5 views

CVE-2025-27015

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in designingmedia Hostiko hostiko allows PHP Local File Inclusion.This issue affects Hostiko: from n/a through 30.1...

7.5CVSS0.00858EPSS

Exploits0References1

Vulnrichment•added 2025/03/26 2:24 p.m.•5 views

CVE-2025-24690 WordPress Formality Plugin <= 1.5.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Michele Giorgi Formality allows PHP Local File Inclusion. This issue affects Formality: from n/a through 1.5.7...

8.1CVSS7.4AI score0.0086EPSS

Exploits0References1

NVD•added 2025/03/10 3:15 p.m.•4 views

CVE-2025-26933

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Nitin Prakash WC Place Order Without Payment wc-place-order-without-payment allows PHP Local File Inclusion.This issue affects WC Place Order Without Payment: from n/a through =...

7.5CVSS0.00517EPSS

Exploits0References1

Vulnrichment•added 2025/02/22 3:52 p.m.•9 views

CVE-2025-26757 WordPress FULL – Cliente plugin <= 3.1.26 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in FULL SERVICES FULL Customer full-customer allows PHP Local File Inclusion.This issue affects FULL Customer: from n/a through = 3.1.26...

7.5CVSS5.3AI score0.00537EPSS

Exploits0References1

CVE•added 2025/01/07 10:49 a.m.•34 views

CVE-2024-56282

CVE-2024-56282 corresponds to a PHP Local File Inclusion in WPMozo Addons Lite for Elementor due to improper filename handling in include/require statements. The CVE entry (initial description) aligns with Red Hat's advisory and Wordfence vulnerability tracking, which confirms the affected softwa...

7.5CVSS7.2AI score0.00647EPSS

Exploits0References1

CVE•added 2024/12/18 11:38 a.m.•48 views

CVE-2024-54270

CVE-2024-54270 is an unauthenticated Local File Inclusion vulnerability in the Axeptio WordPress plugin (Axeptio – Cookie Banner – GDPR Consent & Compliance). The issue arises from improper control of the filename used by include/require in PHP, enabling local file inclusion. Affected versions ra...

8.1CVSS7.2AI score0.00658EPSS

Exploits0References1

CVE•added 2024/12/09 11:31 a.m.•57 views

CVE-2024-54225

CVE-2024-54225: WordPress Designer plugin (CodegearThemes Designer) contains a PHP Local File Inclusion due to improper filename control in include/require. Affected versions: Designer <= 1.3.3 (per NVD) with Wordfence listing Designer

7.5CVSS7.2AI score0.00751EPSS

Exploits0References1

NVD•added 2024/11/30 9:15 p.m.•22 views

CVE-2024-53739

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Cool Plugins Cryptocurrency Widgets For Elementor cryptocurrency-widgets-for-elementor allows PHP Local File Inclusion.This issue affects Cryptocurrency Widgets For Elementor: fr...

9.8CVSS0.00629EPSS

Exploits0References1

Cvelist•added 2024/11/30 8:55 p.m.•32 views

CVE-2024-53739 WordPress Cryptocurrency Widgets For Elementor plugin <= 1.6.4 - Local File Inclusion vulnerability

8.1CVSS0.00629EPSS

Exploits0References1

Vulnrichment•added 2024/11/28 10:37 a.m.•10 views

CVE-2024-52501 WordPress Office Locator plugin <= 1.3.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in webbytemplate Office Locator.This issue affects Office Locator: from n/a through 1.3.0...

7.5CVSS7.4AI score0.00706EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by