CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36 matches found

Cvelist•added 6 days ago•24 views

CVE-2025-69174 WordPress Etude theme <= 1.6 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Etude = 1.6 versions...

8.1CVSS0.00348EPSS

Exploits0References1

Cvelist•added 6 days ago•25 views

CVE-2025-69172 WordPress Resurs theme <= 1.3 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Resurs = 1.3 versions...

8.1CVSS0.00435EPSS

Exploits0References1

CVE•added 2026/06/16 8:57 p.m.•9 views

CVE-2026-40758

The CVE concerns WordPress Léonie theme versions

8.1CVSS5.3AI score0.0032EPSS

Exploits0References1

Vulnrichment•added 2026/03/13 11:41 a.m.•2 views

CVE-2026-32338 WordPress Construction Landing Page theme <= 1.4.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in raratheme Construction Landing Page construction-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Construction Landing Page: from n/a through = 1.4.1...

5.3CVSS5.8AI score0.00224EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:54 a.m.•3 views

CVE-2026-28123 WordPress Veil theme <= 1.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Veil veil allows PHP Local File Inclusion.This issue affects Veil: from n/a through = 1.9...

8.1CVSS5.3AI score0.00337EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:54 a.m.•2 views

CVE-2026-28052 WordPress Peter Mason theme <= 1.4.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Peter Mason petermason allows PHP Local File Inclusion.This issue affects Peter Mason: from n/a through = 1.4.5...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:53 a.m.•3 views

CVE-2026-27348 WordPress Photography theme < 7.7.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeGoods Photography photography allows DOM-Based XSS.This issue affects Photography: from n/a through 7.7.6...

7.1CVSS5.2AI score0.00191EPSS

Exploits0References1

Patchstack•added 2026/02/25 8:25 a.m.•4 views

WordPress Cortex theme <= 1.5 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Cortex versions = 1.5...

8.1CVSS5.9AI score0.00504EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/24 10:30 a.m.•7 views

WordPress Claue - Clean, Minimal Elementor WooCommerce Theme theme <= 2.2.7 - Reflected Cross Site Scripting (XSS) vulnerability

WordPress Claue - Clean, Minimal Elementor WooCommerce Theme theme = 2.2.7 - Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Claue - Clean, Minimal Elementor WooCommerce Theme versions = 2.2.7...

7.1CVSS5.2AI score0.0018EPSS

Exploits0Affected Software1

CVE•added 2026/02/20 3:46 p.m.•8 views

CVE-2025-67547

CVE-2025-67547 is a Missing Authorization / Broken Access Control vulnerability affecting WordPress Konte theme versions through 2.4.6. Red Hat/Red Hat Nexus entries reiter this issue as affected Konte up to v2.4.6 with similar wording. PATCHSTACK and CVE listings indicate an unauthorized access ...

6.5CVSS5.5AI score0.00309EPSS

Exploits0References1

Patchstack•added 2026/02/17 11:46 a.m.•6 views

WordPress PawFriends - Pet Shop and Veterinary WordPress theme theme <= 1.3 - Insecure Direct Object References (IDOR) vulnerability

WordPress PawFriends - Pet Shop and Veterinary WordPress theme theme = 1.3 - Insecure Direct Object References IDOR vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme PawFriends - Pet Shop and Veterinary WordPress Theme versions = 1.3...

5.4CVSS5.5AI score0.00271EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/17 8:9 a.m.•4 views

WordPress Jude theme <= 1.3.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Jude versions = 1.3.0...

8.1CVSS5.5AI score0.00504EPSS

Exploits0Affected Software1

ATTACKERKB•added 2026/01/22 4:51 p.m.•1 views

CVE-2025-67938

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Biagiotti biagiotti allows PHP Local File Inclusion.This issue affects Biagiotti: from n/a through 3.5.2...

8.1CVSS5.4AI score0.00561EPSS

Exploits0References2

Patchstack•added 2026/01/13 9:31 a.m.•4 views

WordPress Bajaar - Highly Customizable WooCommerce WordPress Theme theme <= 2.1.0 - Local File Inclusion vulnerability

WordPress Bajaar - Highly Customizable WooCommerce WordPress Theme theme = 2.1.0 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Bajaar - Highly Customizable WooCommerce WordPress Theme versions = 2.1.0...

8.1CVSS7.1AI score0.00403EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/02 1:27 p.m.•5 views

WordPress Dolcino theme <= 1.6 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Dolcino versions = 1.6...

5.4CVSS7AI score0.00201EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/01 7:22 p.m.•5 views

WordPress Triply theme <= 2.4.7 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Triply versions = 2.4.7...

7.5CVSS7AI score0.0037EPSS

Exploits0Affected Software1

Patchstack•added 2025/12/30 11:6 a.m.•4 views

WordPress Töbel theme <= 1.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Töbel versions = 1.6...

8.1CVSS7AI score0.00403EPSS

Exploits0Affected Software1

Patchstack•added 2025/12/12 5:10 a.m.•5 views

WordPress Jobmonster theme <= 4.8.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Jobmonster versions = 4.8.2...

9.8CVSS7AI score0.0037EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/12/10 3:13 p.m.•4 views

CVE-2025-63067

Missing Authorization vulnerability in p-themes Porto Theme - Functionality porto-functionality allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Porto Theme - Functionality: from n/a through 3.7.3...

4.3CVSS5.9AI score0.00185EPSS

Exploits0References1

Cvelist•added 2025/10/31 11:42 a.m.•7 views

CVE-2025-64368 WordPress Bard theme <= 1.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Mikado-Themes Bard bardwp allows Cross Site Request Forgery.This issue affects Bard: from n/a through = 1.6...

5.4CVSS0.00098EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by