32 matches found
CVE-2026-31913
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Whitebox-Studio Scape scape allows Path Traversal.This issue affects Scape: from n/a through 1.5.16...
EUVD-2026-15813
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Whitebox-Studio Scape scape allows Path Traversal.This issue affects Scape: from n/a through 1.5.16...
CVE-2026-31913 WordPress Scape theme < 1.5.16 - Arbitrary File Deletion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Whitebox-Studio Scape scape allows Path Traversal.This issue affects Scape: from n/a through 1.5.16...
CVE-2026-31913 WordPress Scape theme < 1.5.16 - Arbitrary File Deletion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Whitebox-Studio Scape scape allows Path Traversal.This issue affects Scape: from n/a through 1.5.16...
CVE-2026-31913
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Whitebox-Studio Scape scape allows Path Traversal.This issue affects Scape: from n/a through 1.5.16...
CVE-2026-31913
CVE-2026-31913 affects the Scape WordPress theme (Scape) with versions prior to 1.5.16. The Wordfence report confirms an unauthenticated path traversal vulnerability that can lead to arbitrary file deletion, i.e., a path traversal flaw exploited without authentication. The Wordfence note explicit...
PT-2026-27993
Name of the Vulnerable Software and Affected Versions Whitebox-Studio Scape versions prior to 1.5.16 Description An improper limitation of a pathname to a restricted directory, known as a 'Path Traversal' issue, exists in Whitebox-Studio Scape. This allows an attacker to potentially access files...
WordPress plugin Scape 路径遍历漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
WordPress Scape theme < 1.5.16 - Arbitrary File Deletion vulnerability
Arbitrary File Deletion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Scape versions 1.5.16...
adpred (=1.3.2), bacpipe (>=1.2.0 <=1.3.2.dev0) +16 more potentially affected by CVE-2026-0897 via keras (>=3.0.0 <=3.12.0)
keras PYPI version =3.0.0, =1.2.0, =0.1.0, =0.0.4, =0.4.7, =1.0.3, =0.0.28, =0.2.0, =2.4.0, =0.1.0, =0.1.1, =14.0.0, =14.0.15b3 and more Source cves: CVE-2026-0897 Source advisory: SNYK:PYTHON-KERAS-14947722...
CVE-2025-60213
Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Injection.This issue affects Scape: from n/a through = 1.5.13...
EUVD-2025-35413
Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Injection.This issue affects Scape: from n/a through = 1.5.13...
CVE-2025-60213
Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Injection.This issue affects Scape: from n/a through = 1.5.13...
CVE-2025-60213 WordPress Scape theme <= 1.5.13 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Injection.This issue affects Scape: from n/a through = 1.5.13...
CVE-2025-60213
The vulnerability CVE-2025-60213 concerns a Deserialization of Untrusted Data issue in the WordPress Scape theme (versions up to and including 1.5.13). The root cause is PHP object injection via deserializing untrusted data, affecting the Scape component. The issue is rated CRITICAL (CVSS 3.1: 9....
CVE-2025-60213 WordPress Scape theme <= 1.5.13 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Injection.This issue affects Scape: from n/a through = 1.5.13...
WordPress plugin Whitebox-Studio Scape 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...
EUVD-2024-16957
Malicious code in bioql PyPI...
Qualys Named a Leader in the 2025 IDC MarketScape: Worldwide Exposure Management Vendor Assessment
We’re proud to announce that Qualys has been recognized as a Leader in theIDC MarketScape: Worldwide Exposure Management 2025 Vendor Assessment doc US52994525, August 2025. We believe this recognition underscores Qualys’ commitment to helping organizations proactively manage cyber risk with...
WordPress Scape theme <= 1.5.13 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by Aiden in WordPress Theme Scape versions = 1.5.13...