Search Results (1239 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2025-69175 2 Themerex, Wordpress 2 Line Agency, Wordpress 2026-06-20 8.1 High
Unauthenticated Local File Inclusion in Line Agency <= 1.3.1 versions.
CVE-2026-39559 2 Codesupplyco, Wordpress 2 Uppercase, Wordpress 2026-06-20 8.1 High
Unauthenticated Local File Inclusion in Uppercase < 1.2.2 versions.
CVE-2026-48820 1 Cakephp 1 Cakephp 2026-06-18 N/A
CakePHP is a rapid development framework for PHP. In versions 4.5.11 and earlier, 4.6.0 through 4.6.3, 5.0.0 through 5.1.6, 5.2.0 through 5.2.12, and 5.3.0 through 5.3.5, View::_getElementFileName() does not check that the resolved element path is within the application/plugin view template paths. When element names are created with specifically crafted user-supplied data this weakness can be leveraged to include other PHP files on the server. Patched releases are available in 5.3.6, 5.2.13, 5.1.7, 4.6.4, and 4.5.11.
CVE-2025-69148 2026-06-18 8.1 High
Unauthenticated Local File Inclusion in Quirky <= 1.23 versions.
CVE-2025-69112 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Planty <= 1.14.0 versions.
CVE-2025-69158 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Granola <= 1.13 versions.
CVE-2026-22338 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in EcoBlue <= 1.15 versions.
CVE-2025-69117 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Ingenioso <= 1.14.0 versions.
CVE-2026-22326 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Reprizo <= 1.0.8 versions.
CVE-2026-22330 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Right Way <= 4.0 versions.
CVE-2025-69145 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Gat <= 1.16 versions.
CVE-2025-69106 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Imba <= 1.5.0 versions.
CVE-2025-58953 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Joly <= 1.22.0 versions.
CVE-2025-69166 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Gunslinger <= 1.7 versions.
CVE-2025-69123 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Snow Club <= 1.1 versions.
CVE-2025-69174 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Etude <= 1.6 versions.
CVE-2025-69126 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Fortius <= 2.3.0 versions.
CVE-2025-69157 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Gamic <= 1.15 versions.
CVE-2025-69172 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Resurs <= 1.3 versions.
CVE-2025-49403 2 Aa-team, Wordpress 2 Premium Age Verification Restriction For Wordpress, Wordpress 2026-06-17 7.5 High
Unauthenticated Arbitrary File Download in Premium Age Verification / Restriction for WordPress <= 3.0.2 versions.