2 matches found
CVE-2025-58206
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeMove MaxCoach maxcoach allows PHP Local File Inclusion.This issue affects MaxCoach: from n/a through = 3.2.5...
CVE-2025-58206
CVE-2025-58206 is a Local File Inclusion vulnerability in WordPress Theme MaxCoach (affected: versions n/a through 3.2.5; also described as ThemeMove MaxCoach in some sources). The root cause is improper control of the filename used in PHP include/require statements, enabling PHP Local File Inclu...