CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1618 matches found

Vulnrichment•added 2025/09/09 4:25 p.m.•3 views

CVE-2025-54709 WordPress Sala Theme <= 1.1.6 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Sala sala.This issue affects Sala: from n/a through = 1.1.6...

8.1CVSS5.3AI score0.00178EPSS

Exploits0References1

Positive Technologies•added 2025/09/09 12:0 a.m.•2 views

PT-2025-36795

Name of the Vulnerable Software and Affected Versions: gavias Ziston affected versions not specified Description: The software contains an Improper Control of Filename for Include/Require Statement, leading to a PHP Local File Inclusion issue. This allows for the inclusion of local files within t...

8.1CVSS5.9AI score0.00158EPSS

Exploits0References4

RedhatCVE•added 2025/09/07 4:33 p.m.•3 views

CVE-2025-58214

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in gavias Indutri indutri allows PHP Local File Inclusion.This issue affects Indutri: from n/a through 1.3.0...

8.1CVSS5.9AI score0.00158EPSS

Exploits0References1

NVD•added 2025/09/05 5:15 p.m.•1 views

CVE-2025-58214

8.1CVSS0.00158EPSS

Exploits0References1

OSV•added 2025/09/05 5:15 p.m.•1 views

CVE-2025-58206

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeMove MaxCoach allows PHP Local File Inclusion. This issue affects MaxCoach: from n/a through 3.2.5...

9.8CVSS5.8AI score0.00158EPSS

Exploits0References1

OSSF Malicious Packages•added 2025/09/05 5:10 p.m.•2 views

Malicious code in fill-kind-require (npm)

The package fill-kind-require was found to contain malicious code...

7AI score

Exploits0

OSV•added 2025/09/05 5:10 p.m.•1 views

MAL-2025-44266 Malicious code in fill-kind-require (npm)

The package fill-kind-require was found to contain malicious code...

7AI score

Exploits0

RedhatCVE•added 2025/09/05 3:22 p.m.•2 views

CVE-2025-58637

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in immonex immonex Kickstart immonex-kickstart allows PHP Local File Inclusion.This issue affects immonex Kickstart: from n/a through = 1.11.6...

7.5CVSS5.9AI score0.00157EPSS

Exploits0References1

Positive Technologies•added 2025/09/05 12:0 a.m.•3 views

PT-2025-36255

Name of the Vulnerable Software and Affected Versions: gavias Indutri versions prior to 1.3.0 Description: The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion. This allows for PHP Local File Inclusion. Recommendation...

8.1CVSS6.4AI score0.00158EPSS

Exploits0References5

Vulnrichment•added 2025/09/03 2:36 p.m.•2 views

CVE-2025-58608 WordPress MediaPress Plugin <= 1.5.9.1 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BuddyDev MediaPress mediapress allows PHP Local File Inclusion.This issue affects MediaPress: from n/a through = 1.5.9.1...

7.5CVSS5.9AI score0.00157EPSS

Exploits0References1

RedhatCVE•added 2025/09/02 4:13 a.m.•2 views

CVE-2025-47696

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in solwin Blog Designer PRO blog-designer-pro.This issue affects Blog Designer PRO: from n/a through = 3.4.7...

8.1CVSS5.9AI score0.00178EPSS

Exploits0References1

NVD•added 2025/08/31 4:15 a.m.•1 views

CVE-2025-47696

8.1CVSS0.00178EPSS

Exploits0References1

Positive Technologies•added 2025/08/31 12:0 a.m.•2 views

PT-2025-35388

Name of the Vulnerable Software and Affected Versions: Solwin Blog Designer PRO versions through 3.4.7 Description: The software is susceptible to a PHP Remote File Inclusion issue due to improper control of filename for include/require statements. This allows for potential code execution...

8.1CVSS7.5AI score0.00178EPSS

Exploits0References7

RedhatCVE•added 2025/08/30 6:18 p.m.•2 views

CVE-2025-49405

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Favethemes Houzez allows PHP Local File Inclusion.This issue affects Houzez: from n/a before 4.1.4...

8.1CVSS5.3AI score0.00067EPSS

Exploits0References1

RedhatCVE•added 2025/08/30 6:17 p.m.•2 views

CVE-2025-53334

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in TieLabs Jannah jannah allows PHP Local File Inclusion.This issue affects Jannah: from n/a through 7.5.1...

8.1CVSS5.9AI score0.00158EPSS

Exploits0References1

RedhatCVE•added 2025/08/30 6:17 p.m.•2 views

CVE-2025-53328

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Opinion Stage Poll, Survey & Quiz Maker Plugin by Opinion Stage social-polls-by-opinionstage allows PHP Local File Inclusion.This issue affects Poll, Survey & Quiz Maker Plugin b...

7.5CVSS5.9AI score0.00144EPSS

Exploits1References1

RedhatCVE•added 2025/08/30 6:17 p.m.•2 views

CVE-2025-53227

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in unfoldwp Magazine Saga magazine-saga allows PHP Local File Inclusion.This issue affects Magazine Saga: from n/a through = 1.2.7...

8.1CVSS5.9AI score0.00158EPSS

Exploits0References1

Github Security Blog•added 2025/08/28 2:58 p.m.•4 views

Contao does not properly manage privileges for page and article fields

Impact Under certain conditions, back end users may be able to edit fields of pages and articles without having the necessary permissions. Patches Update to Contao 5.3.38 or 5.6.1. Workarounds None. For more information If you have any questions or comments about this advisory, open an issue in...

4.3CVSS6.9AI score0.00058EPSS

Exploits0References5Affected Software2

NVD•added 2025/08/28 1:16 p.m.•2 views

CVE-2025-54716

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme Ireca ireca allows PHP Local File Inclusion.This issue affects Ireca: from n/a through = 1.8.5...

8.1CVSS0.00158EPSS

Exploits0References1

NVD•added 2025/08/28 1:16 p.m.•1 views

CVE-2025-53578

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in gavias Kipso kipso allows PHP Local File Inclusion.This issue affects Kipso: from n/a through = 1.3.4...

8.1CVSS0.00158EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by