CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

647 matches found

Positive Technologies•added 2025/12/11 12:0 a.m.•3 views

PT-2025-50764

Name of the Vulnerable Software and Affected Versions xbtitFM version 4.1.18 Description The software contains an insecure file upload issue. Authenticated attackers with administrative privileges can upload and execute arbitrary PHP code through the file hosting feature. File type restrictions c...

8.6CVSS7.6AI score0.00524EPSS

Exploits1References5

EUVD•added 2025/12/09 6:30 p.m.•2 views

EUVD-2025-202122

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in NooTheme Jobmonster noo-jobmonster allows PHP Local File Inclusion.This issue affects Jobmonster: from n/a through = 4.8.2...

6.6AI score0.0037EPSS

Exploits0References2

Vulnrichment•added 2025/12/09 2:52 p.m.•3 views

CVE-2025-63003 WordPress North - Required Plugin plugin <= 1.4.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes North - Required Plugin north-plugin allows PHP Local File Inclusion.This issue affects North - Required Plugin: from n/a through = 1.4.2...

7.5CVSS6.8AI score0.00381EPSS

Exploits0References1

Positive Technologies•added 2025/12/09 12:0 a.m.•4 views

PT-2025-49901

Name of the Vulnerable Software and Affected Versions Opal WP ekommart versions prior to 4.3.1 Description A flaw exists in Opal WP ekommart that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue impacts the software’s handling of...

9.8CVSS6.6AI score0.0037EPSS

Exploits0References3

RedhatCVE•added 2025/11/07 5:32 p.m.•3 views

CVE-2025-62014

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme ITok itok.This issue affects ITok: from n/a through = 1.1.42...

8.1CVSS7.1AI score0.0044EPSS

Exploits0References1

EUVD•added 2025/11/06 6:32 p.m.•4 views

EUVD-2025-38078

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CodexThemes TheGem Theme Elements for WPBakery thegem-elements.This issue affects TheGem Theme Elements for WPBakery: from n/a through = 5.10.5.1...

8.1CVSS6.6AI score0.00433EPSS

Exploits0References2

EUVD•added 2025/11/06 6:32 p.m.•3 views

EUVD-2025-38096

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme ITok itok.This issue affects ITok: from n/a through = 1.1.42...

6.6AI score0.0044EPSS

Exploits0References2

NVD•added 2025/11/06 4:16 p.m.•3 views

CVE-2025-60198

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in dedalx Saxon - Viral Content Blog & Magazine Marketing WordPress Theme saxon allows PHP Local File Inclusion.This issue affects Saxon - Viral Content Blog & Magazine Marketing...

8.1CVSS0.0035EPSS

Exploits0References1

Positive Technologies•added 2025/11/06 12:0 a.m.•4 views

PT-2025-45272

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in dedalx InHype - Blog & Magazine WordPress Theme inhype allows PHP Local File Inclusion.This issue affects InHype - Blog & Magazine WordPress Theme: from n/a through = 1.5.2...

8.2CVSS7.1AI score0.0035EPSS

Exploits0References2

Positive Technologies•added 2025/11/06 12:0 a.m.•3 views

PT-2025-45315

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in favethemes Houzez houzez.This issue affects Houzez: from n/a through 4.2.0...

8CVSS7.1AI score0.00347EPSS

Exploits0References2

Cvelist•added 2025/10/23 12:32 p.m.•11 views

CVE-2025-11023 Local File Inclusion in ArkSigner's AcBakImzala

Inclusion of Functionality from Untrusted Control Sphere, Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ArkSigner Software and Hardware Inc. AcBakImzala allows PHP Local File Inclusion. This issue affects AcBakImzala: before...

9.8CVSS0.00469EPSS

Exploits0References2

EUVD•added 2025/10/22 3:31 p.m.•4 views

EUVD-2025-35380

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themesion Grevo grevo.This issue affects Grevo: from n/a through = 2.4...

6.6AI score0.0038EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2009-4287

Malware in sbrugna...

6.8CVSS6.4AI score0.01652EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-5502

Malware in sbrugna...

7.5CVSS6.4AI score0.08853EPSS

Exploits1References12