3 matches found
CVE-2025-69087
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jwsthemes FreeAgent freeagent allows PHP Local File Inclusion.This issue affects FreeAgent: from n/a through = 2.1.2...
CVE-2025-69087
CVE-2025-69087 is an Unpatched Local File Inclusion vulnerability in FreeAgent (jwsthemes) for WordPress. The issue arises from improper control of the filename used by PHP include/require, effectively enabling an attacker to read arbitrary files via PHP code execution paths in FreeAgent builds u...
WordPress FreeAgent theme <= 2.1.2 - Local File Inclusion vulnerability
Software : FreeAgent Type : Theme Vulnerable versions : = 2.1.2 OWASP Top 10 : A3: Injection Classification : Local File Inclusion CVE ID : CVE-2025-69087 Patchstack priority : High CVSS severity : 8.1 Required privilege : Unauthenticated Developer : Claim ownership PSID : 3c336586e5ba Credits :...