Lucene search
K

5 matches found

EUVD
EUVD
added 2026/05/05 12:31 p.m.2 views

EUVD-2026-27303

The Betheme theme for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 28.4. This is due to the uploadicons function workflow using a user-controlled upload path mfn-icon-upload in a filesystem move operation without constraining it to the uploads directory. Th...

6.5CVSS5.9AI score0.0008EPSS
Exploits0References3
NVD
NVD
added 2026/05/05 12:16 p.m.5 views

CVE-2026-6262

The Betheme theme for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 28.4. This is due to the uploadicons function workflow using a user-controlled upload path mfn-icon-upload in a filesystem move operation without constraining it to the uploads directory. Th...

6.5CVSS0.0008EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/05 11:24 a.m.1 views

CVE-2026-6262

The Betheme theme for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 28.4. This is due to the uploadicons function workflow using a user-controlled upload path mfn-icon-upload in a filesystem move operation without constraining it to the uploads directory. Th...

6.5CVSS5.9AI score0.0008EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/22 12:0 a.m.1 views

PT-2024-33347 · Rsa · Archer Platform

Name of the Vulnerable Software and Affected Versions: Archer Platform versions 2024.03 through 2024.08 Description: The issue is related to an API authorization bypass vulnerability, specifically concerning the support for application files. This could allow a remote unprivileged attacker to...

6.5CVSS7.3AI score0.00058EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/10/22 12:0 a.m.2 views

Archer Platform 安全漏洞

Archer Platform is a modern integrated risk management solution from Archer, Inc. A security vulnerability exists in Archer Platform versions prior to 2024.09 that stems from being affected by an authorization bypass vulnerability that could be exploited by a remote, unprivileged attacker to...

6.5CVSS6.8AI score0.00058EPSS
Exploits0References3
Rows per page
Query Builder