Falhas do tipo CWE-98

1.235 resultados
CVE-2025-49403HIGHWordPress Premium Age Verification / Restriction for WordPress Plugin <= 3.0.2 - Arbitrary File Download VulnerabilityEPSS 0.3%CVE-2025-62075HIGHWordPress Simple Payment plugin <= 2.4.6 - Local File Inclusion vulnerabilityEPSS 0.3%CVE-2025-13088HIGHCategory and Product Woocommerce Tabs <= 1.0 - Authenticated (Contributor+) Local File InclusionEPSS 0.3%CVE-2025-68877HIGHWordPress CedCommerce Integration for Good Market plugin <= 1.0.6 - Local File Inclusion vulnerabilityEPSS 0.3%CVE-2025-68870HIGHWordPress CookieHint WP plugin <= 1.0.0 - Local File Inclusion vulnerabilityEPSS 0.3%CVE-2026-54845HIGHWordPress MDTF plugin <= 1.3.8 - Local File Inclusion vulnerabilityEPSS 0.3%CVE-2026-44239HIGHFreePBX: Authenticated Local File Inclusion in Dashboard ModuleEPSS 0.3%CVE-2026-30480MEDIUMA Local File Inclusion (LFI) vulnerability in the NFSen module (nfsen.inc.php) of LibreNMS 22.11.0-23-gd091788f2 allows authenticated attackEPSS 0.3%CVE-2026-57647HIGHWordPress Panorama Viewer – 360 Degree Image + Video Viewer plugin <= 1.6.1 - Local File Inclusion vulnerabilityEPSS 0.3%CVE-2026-48820MEDIUMCakePHP: View::element() is missing a path containment checkEPSS 0.3%CVE-2020-37169MEDIUMWordPress Plugin ultimate-member 2.1.3 Local File InclusionEPSS 0.2%CVE-2025-49405MEDIUMWordPress Houzez Theme < 4.1.4 - Local File Inclusion VulnerabilityEPSS 0.2%CVE-2025-24937CRITICALAccess to local file system and its contentEPSS 0.2%CVE-2025-63738MEDIUMAn issue was discovered in file index.php in Xinhu Rainrock RockOA 2.7.0 allowing attackers to gain sensitive information via phpinfo via thEPSS 0.2%CVE-2018-25231MEDIUMHeidiSQL 9.5.0.5196 Denial of Service via PreferencesEPSS 0.2%