CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

647 matches found

NVD•added 2025/01/21 2:15 p.m.•9 views

CVE-2025-22311

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in DeluxeThemes Private Messages for UserPro userpro-messaging.This issue affects Private Messages for UserPro: from n/a through = 4.10.0...

7.5CVSS0.00835EPSS

Exploits0References1

NVD•added 2025/01/09 4:16 p.m.•5 views

CVE-2025-22508

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in roninwp FAT Event Lite fat-event-lite allows PHP Local File Inclusion.This issue affects FAT Event Lite: from n/a through = 1.1...

8.1CVSS0.02065EPSS

Exploits0References1

NVD•added 2025/01/07 4:15 p.m.•5 views

CVE-2024-53800

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in rezgo Rezgo rezgo allows PHP Local File Inclusion.This issue affects Rezgo: from n/a through = 4.17...

8.1CVSS0.06085EPSS

Exploits0References1

NVD•added 2025/01/07 11:15 a.m.•3 views

CVE-2025-22305

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Essential Plugin Hero Banner Ultimate hero-banner-ultimate allows PHP Local File Inclusion.This issue affects Hero Banner Ultimate: from n/a through = 1.4.4...

6.5CVSS0.00242EPSS

Exploits0References1

NVD•added 2025/01/07 11:15 a.m.•3 views

CVE-2024-56282

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elicus WPMozo Addons Lite for Elementor wpmozo-addons-lite-for-elementor allows PHP Local File Inclusion.This issue affects WPMozo Addons Lite for Elementor: from n/a through =...

7.5CVSS0.03424EPSS

Exploits0References1

NVD•added 2025/01/07 11:15 a.m.•4 views

CVE-2024-56278

Improper Control of Generation of Code 'Code Injection' vulnerability in Smackcoders Inc., WP Ultimate Exporter wp-ultimate-exporter allows PHP Remote File Inclusion.This issue affects WP Ultimate Exporter: from n/a through = 2.9.1...

9.1CVSS0.55539EPSS

Exploits0References1

NVD•added 2025/01/07 11:15 a.m.•6 views

CVE-2024-49649

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in hakeemnala Build App Online build-app-online allows PHP Local File Inclusion.This issue affects Build App Online: from n/a through = 1.0.23...

9.8CVSS0.06085EPSS

Exploits0References1

Vulnrichment•added 2025/01/07 10:48 a.m.•4 views

CVE-2025-22305 WordPress Hero Banner Ultimate plugin <= 1.4.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP OnlineSupport, Essential Plugin Hero Banner Ultimate allows PHP Local File Inclusion.This issue affects Hero Banner Ultimate: from n/a through 1.4.2...

6.5CVSS6.7AI score0.00242EPSS

Exploits0References1

NVD•added 2024/12/31 10:15 a.m.•6 views

CVE-2024-56230

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Maidul Dynamic Product Category Grid, Slider for WooCommerce dynamic-product-categories-design allows PHP Local File Inclusion.This issue affects Dynamic Product Category Grid,...

7.5CVSS0.02084EPSS

Exploits0References1

NVD•added 2024/12/31 10:15 a.m.•9 views

CVE-2024-56216

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themifyme Themify Builder themify-builder allows PHP Local File Inclusion.This issue affects Themify Builder: from n/a through = 7.6.3...

6.5CVSS0.00495EPSS

Exploits0References1

CVE•added 2024/12/18 11:38 a.m.•46 views

CVE-2024-54270

CVE-2024-54270 is an unauthenticated Local File Inclusion vulnerability in the Axeptio WordPress plugin (Axeptio – Cookie Banner – GDPR Consent & Compliance). The issue arises from improper control of the filename used by include/require in PHP, enabling local file inclusion. Affected versions ra...

8.1CVSS7.2AI score0.03907EPSS

Exploits0References1

Cvelist•added 2024/12/18 11:38 a.m.•17 views

CVE-2024-54270 WordPress Axeptio plugin <= 2.5.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axeptio Axeptio axeptio-sdk-integration allows PHP Local File Inclusion.This issue affects Axeptio: from n/a through = 2.5.4...

8.1CVSS0.03907EPSS

Exploits0References1

NVD•added 2024/12/09 1:15 p.m.•10 views

CVE-2024-54225

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codegearthemes Designer designer allows PHP Local File Inclusion.This issue affects Designer: from n/a through = 1.4.1...

7.5CVSS0.0208EPSS

Exploits0References1

NVD•added 2024/12/06 2:15 p.m.•14 views

CVE-2024-53824

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in allbootstrapblocks All Bootstrap Blocks all-bootstrap-blocks allows PHP Local File Inclusion.This issue affects All Bootstrap Blocks: from n/a through = 1.3.19...

7.5CVSS0.04578EPSS

Exploits0References1

NVD•added 2024/11/30 9:15 p.m.•20 views

CVE-2024-53739

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Cool Plugins Cryptocurrency Widgets For Elementor cryptocurrency-widgets-for-elementor allows PHP Local File Inclusion.This issue affects Cryptocurrency Widgets For Elementor: fr...

9.8CVSS0.00956EPSS

Exploits0References1

NVD•added 2024/11/28 11:15 a.m.•13 views

CVE-2024-52501

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WebbyTemplate Office Locator office-locator.This issue affects Office Locator: from n/a through = 1.3.0...

7.5CVSS0.01097EPSS

Exploits0References1

CVE•added 2024/11/28 10:41 a.m.•47 views

CVE-2024-52496

CVE-2024-52496 concerns WordPress plugin Absolute Addons For Elementor (1.0.14.

7.5CVSS7.3AI score0.00956EPSS

Exploits0References1

CVE•added 2024/11/28 10:39 a.m.•48 views

CVE-2024-52497

CVE-2024-52497 details a Local File Inclusion in Shopready (WordPress Shopready plugin/Shopready Elementor addon) due to improper control of the filename in Include/Require usage. Affected versions include Shopready up to 3.5 (Wordfence/CVE records) and up to 3.6 per Patchstack reference. The CVE...

7.5CVSS7.2AI score0.01128EPSS

Exploits0References1

CVE•added 2024/11/28 10:37 a.m.•49 views

CVE-2024-52501

CVE-2024-52501 affects the WordPress Office Locator plugin (Office Locator) with improper control of filenames in Include/Require statements, i.e., a Local File Inclusion/ PHP Remote File Inclusion issue. Public details indicate impact on Office Locator versions from 1.0 up to 1.3.0, with vendor ...

7.5CVSS7.2AI score0.01097EPSS

Exploits0References1

CVE•added 2024/11/20 11:29 a.m.•52 views

CVE-2024-52450

CVE-2024-52450 describes an Unauthenticated Local File Inclusion in the WordPress plugin “nBlocks” (versions up to and including 1.0.2) caused by improper control of filenames in PHP Include/Require statements. Public sources in the Connected documents confirm the issue affects nBlocks from n/a t...

7.5CVSS7.2AI score0.02451EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by