CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2025/12/10 3:14 p.m.•2 views

CVE-2025-63076

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Dream-Theme The7 Elements dt-the7-core allows PHP Local File Inclusion.This issue affects The7 Elements: from n/a through = 2.7.11...

7.5CVSS7.1AI score0.00109EPSS

Exploits0References1

EUVD•added 2025/12/09 6:30 p.m.•1 views

EUVD-2025-201941

7.5CVSS6.6AI score0.00109EPSS

Exploits0References2

NVD•added 2025/12/09 4:18 p.m.•2 views

CVE-2025-63076

7.5CVSS0.00109EPSS

Exploits0References1

Vulnrichment•added 2025/12/09 2:52 p.m.•1 views

CVE-2025-63076 WordPress The7 Elements plugin <= 2.7.11 - Local File Inclusion vulnerability

7.5CVSS6.7AI score0.00109EPSS

Exploits0References1

CVE•added 2025/12/09 2:52 p.m.•20 views

CVE-2025-63076

CVE-2025-63076 affects The7 Elements (dt-the7-core) up to version 2.7.11, enabling PHP Local File Inclusion due to improper filename control in Include/Require. Multiple sources (Wordfence, CVE listings) confirm this vulnerability and indicate it has been patched. The advisory notes the issue as ...

7.5CVSS6.7AI score0.00109EPSS

Exploits0References1

Cvelist•added 2025/12/09 2:52 p.m.•15 views

CVE-2025-63076 WordPress The7 Elements plugin <= 2.7.11 - Local File Inclusion vulnerability

7.5CVSS0.00109EPSS

Exploits0References1

CNNVD•added 2025/12/09 12:0 a.m.•1 views

WordPress plugin The7 Elements 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

7.5CVSS6.4AI score0.00109EPSS

Exploits0References1