Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2025/06/17 3:1 p.m.2 views

CVE-2025-49508 WordPress CozyStay theme < 1.7.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in LoftOcean CozyStay cozystay allows PHP Local File Inclusion.This issue affects CozyStay: from n/a through 1.7.1...

8.1CVSS7.9AI score0.00397EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/17 3:1 p.m.12 views

CVE-2025-49508 WordPress CozyStay theme < 1.7.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in LoftOcean CozyStay cozystay allows PHP Local File Inclusion.This issue affects CozyStay: from n/a through 1.7.1...

8.1CVSS0.00397EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/10 12:42 p.m.4 views

CVE-2025-49507 WordPress CozyStay theme < 1.7.1 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay cozystay allows Object Injection.This issue affects CozyStay: from n/a through 1.7.1...

9.8CVSS8.6AI score0.00509EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 12:42 p.m.16 views

CVE-2025-49507 WordPress CozyStay theme < 1.7.1 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay cozystay allows Object Injection.This issue affects CozyStay: from n/a through 1.7.1...

9.8CVSS0.00509EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/06/09 12:27 p.m.6 views

WordPress CozyStay theme < 1.7.1 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Bonds in WordPress Theme CozyStay versions 1.7.1...

9.8CVSS7.3AI score0.00509EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/03/18 9:44 p.m.8 views

WordPress CozyStay theme <= 1.7.0 - Missing Authorization to Arbitrary Action Execution in ajax_handler vulnerability

Missing Authorization to Arbitrary Action Execution in ajaxhandler vulnerability discovered by Lucio Sá in WordPress Theme CozyStay versions = 1.7.0...

7.5CVSS8.9AI score0.00296EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/03/18 9:39 p.m.4 views

WordPress CozyStay theme <= 1.7.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Lucio Sá in WordPress Theme CozyStay versions = 1.7.0...

9.8CVSS9AI score0.00703EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder