2 matches found
CVE-2025-60153
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in wpshuffle Subscribe To Unlock subscribe-to-unlock allows PHP Local File Inclusion.This issue affects Subscribe To Unlock: from n/a through = 1.1.5...
CVE-2025-60153
CVE-2025-60153 affects the Subscribe To Unlock WordPress plugin with a PHP Local File Inclusion (LFI) flaw in Include/Require usage. Described as a PHP Remote File Inclusion issue that effectively enables LFI. Affected versions: from n/a through 1.1.5. CVSSv3.1 base score 7.5 (HIGH), vector: AV:N...