CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-32152 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Essential Plugins by WP OnlineSupport Slider a SlidersPack allows PHP Local File Inclusion. This issue affects Slider a SlidersPack: from n/a through 2.3.
CVSS: HIGH (7.5) EPSS Score: 0.13%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32151 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Sven Lehnert BuddyForms allows PHP Local File Inclusion. This issue affects BuddyForms: from n/a through 2.8.15.
CVSS: HIGH (7.5) EPSS Score: 0.13%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32150 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Rameez Iqbal Real Estate Manager allows PHP Local File Inclusion. This issue affects Real Estate Manager: from n/a through 7.3.
CVSS: HIGH (7.5) EPSS Score: 0.13%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32149 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in winkm89 teachPress allows SQL Injection. This issue affects teachPress: from n/a through 9.0.11.
CVSS: HIGH (8.5) EPSS Score: 0.03%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32148 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Daisycon Daisycon prijsvergelijkers allows SQL Injection. This issue affects Daisycon prijsvergelijkers: from n/a through 4.8.4.
CVSS: HIGH (8.5) EPSS Score: 0.03%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32147 |
Description: Missing Authorization vulnerability in coothemes Easy WP Optimizer allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Easy WP Optimizer: from n/a through 1.1.0.
CVSS: HIGH (8.8) EPSS Score: 0.04%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32146 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in JoomSky JS Job Manager allows PHP Local File Inclusion. This issue affects JS Job Manager: from n/a through 2.0.2.
CVSS: HIGH (8.8) EPSS Score: 0.13%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32142 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Stylemix Motors allows PHP Local File Inclusion. This issue affects Motors: from n/a through 1.4.65.
CVSS: HIGH (8.8) EPSS Score: 0.13%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32141 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Stylemix MasterStudy LMS allows PHP Local File Inclusion. This issue affects MasterStudy LMS: from n/a through 3.5.23.
CVSS: HIGH (8.8) EPSS Score: 0.13%
April 4th, 2025 (3 months ago)
|
|
CVE-2025-32138 |
Description: Improper Restriction of XML External Entity Reference vulnerability in supsystic Easy Google Maps allows XML Injection. This issue affects Easy Google Maps: from n/a through 1.11.17.
CVSS: MEDIUM (6.6) EPSS Score: 0.06%
April 4th, 2025 (3 months ago)
|