CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

647 matches found

Cvelist•added 2025/02/25 2:17 p.m.•14 views

CVE-2025-26932 WordPress WPBot plugin <= 6.3.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in QuantumCloud ChatBot chatbot allows PHP Local File Inclusion.This issue affects ChatBot: from n/a through = 6.3.5...

7.5CVSS0.00607EPSS

Exploits0References1

CVE•added 2025/02/25 2:17 p.m.•53 views

CVE-2025-26932

CVE-2025-26932 affects WPBot (WordPress WPBot ChatBot). The vulnerability is an authenticated Local File Inclusion (LFI) due to improper control of include/require statements. Affected versions are ChatBot up to 6.3.5. Patch status: Patched in the available update.

7.5CVSS7.2AI score0.00607EPSS

Exploits0References1

CVE•added 2025/02/25 2:16 p.m.•62 views

CVE-2025-26985

CVE-2025-26985 (Majestic Support plugin) is an Unauthenticated Local File Inclusion in Majestic Support (WordPress plugin) reported to affect versions up to 1.0.6. Exploit path involves improper filename handling for PHP include/require, enabling LFI. The CVE entry has an 8.1 base score (network ...

8.1CVSS7.2AI score0.00878EPSS

Exploits0References1

CVE•added 2025/02/24 2:48 p.m.•58 views

CVE-2025-27272

CVE-2025-27272 is a Local File Inclusion vulnerability in the WordPress plugin VG PostCarousel (affected versions: from n/a through 1.1). The issue arises from improper control of the filename used in PHP Include/Require statements, enabling potential local file access. Connected vulnerability so...

7.5CVSS7.2AI score0.00852EPSS

Exploits0References1

Positive Technologies•added 2025/02/24 12:0 a.m.•4 views

PT-2025-7722

Name of the Vulnerable Software and Affected Versions VG PostCarousel versions 1.1 and earlier Description The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability. This allows PHP Local File...

7.5CVSS8.4AI score0.00852EPSS

Exploits0References6

NVD•added 2025/02/22 4:15 p.m.•6 views

CVE-2025-26757

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in FULL SERVICES FULL Customer full-customer allows PHP Local File Inclusion.This issue affects FULL Customer: from n/a through = 3.1.26...

7.5CVSS0.00501EPSS

Exploits0References1

Vulnrichment•added 2025/02/22 3:52 p.m.•9 views

CVE-2025-26757 WordPress FULL – Cliente plugin <= 3.1.26 - Local File Inclusion vulnerability

7.5CVSS5.3AI score0.00501EPSS

Exploits0References1

CVE•added 2025/02/22 3:52 p.m.•56 views

CVE-2025-26760

CVE-2025-26760: WordPress Calculator Builder plugin

7.5CVSS7.2AI score0.00592EPSS

Exploits0References1

RedhatCVE•added 2025/02/20 8:25 p.m.•13 views

CVE-2025-22656

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Oscar Alvarez Cookie Monster cookie-monster allows PHP Local File Inclusion.This issue affects Cookie Monster: from n/a through = 1.2.2...

8.1CVSS7.2AI score0.01131EPSS

Exploits0References1

RedhatCVE•added 2025/02/09 10:19 a.m.•6 views

CVE-2025-25141

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in zankover Fami Sales Popup fami-sales-popup allows PHP Local File Inclusion.This issue affects Fami Sales Popup: from n/a through = 2.0.0...

7.5CVSS7.2AI score0.01131EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 12:29 p.m.•4 views

CVE-2024-43261

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Hamed Naderfar Compute Links allows PHP Remote File Inclusion.This issue affects Compute Links: from n/a through 1.2.1...

9.6CVSS7AI score0.01838EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 12:20 p.m.•6 views

CVE-2024-52501

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WebbyTemplate Office Locator office-locator.This issue affects Office Locator: from n/a through = 1.3.0...

7.5CVSS7.2AI score0.01097EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 12:6 p.m.•6 views

CVE-2024-52450

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in officialprocoders nBlocks nblocks allows PHP Local File Inclusion.This issue affects nBlocks: from n/a through = 1.0.2...

7.5CVSS7.2AI score0.02451EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 9:22 a.m.•2 views

CVE-2024-56282

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elicus WPMozo Addons Lite for Elementor wpmozo-addons-lite-for-elementor allows PHP Local File Inclusion.This issue affects WPMozo Addons Lite for Elementor: from n/a through =...

7.5CVSS7.2AI score0.03424EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 9:16 a.m.•4 views

CVE-2024-56281

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codemstory 워드프레스 결제 심플페이 pgall-for-woocommerce allows PHP Local File Inclusion.This issue affects 워드프레스 결제 심플페이: from n/a through = 5.2.0...

7.5CVSS7.2AI score0.03424EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 9:12 a.m.•3 views

CVE-2024-56230

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Maidul Dynamic Product Category Grid, Slider for WooCommerce dynamic-product-categories-design allows PHP Local File Inclusion.This issue affects Dynamic Product Category Grid,...

7.5CVSS7.2AI score0.02084EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 6:40 a.m.•2 views

CVE-2024-50434

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themehorse NewsCard newscard.This issue affects NewsCard: from n/a through = 1.3...

8.8CVSS5.9AI score0.03008EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 4:7 a.m.•10 views

CVE-2024-54376

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Spider Themes EazyDocs eazydocs allows PHP Local File Inclusion.This issue affects EazyDocs: from n/a through = 2.8.0...

7.5CVSS7.2AI score0.03863EPSS

Exploits0References1

CVE•added 2025/01/27 2:22 p.m.•51 views

CVE-2025-24782

CVE-2025-24782 affects the WordPress plugin Post Grid, Slider & Carousel Ultimate (with Shortcode, Gutenberg Block & Elementor Widget) up to version 1.6.10. The vulnerability is an Authenticated (Contributor+) Local File Inclusion due to Improper Control of Filename for Include/Require in PHP, en...

8.8CVSS7.2AI score0.00338EPSS

Exploits0References1Affected Software1

NVD•added 2025/01/24 6:15 p.m.•14 views

CVE-2025-24733

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Akhtarujjaman Shuvo Post Grid Master ajax-filter-posts allows PHP Local File Inclusion.This issue affects Post Grid Master: from n/a through = 3.4.12...

6.5CVSS0.00183EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by