4 matches found
CVE-2025-69040 WordPress Bfres theme <= 1.2.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in goalthemes Bfres bfres allows PHP Local File Inclusion.This issue affects Bfres: from n/a through = 1.2.1...
CVE-2025-69040 WordPress Bfres theme <= 1.2.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in goalthemes Bfres bfres allows PHP Local File Inclusion.This issue affects Bfres: from n/a through = 1.2.1...
CVE-2025-69040
CVE-2025-69040 affects WordPress theme/product: Bfres (goalthemes) with bfres, affected versions up to and including 1.2.1. Root cause is Improper Control of Filename for Include/Require in PHP, enabling Local File Inclusion (LFI). Red Hat and CVE/NVD entries describe Unauthenticated LFI, with im...
WordPress Bfres theme <= 1.2.1 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Phat RiO - BlueRock in WordPress Theme Bfres versions = 1.2.1...