4 matches found
CVE-2025-39463
CVE-2025-39463 is a WordPress Dessau theme local-file-inclusion vulnerability. Connected sources confirm an improper control of filenames for include/require leading to PHP Local File Inclusion in Dessau, affecting versions earlier than 1.9. The issue is documented as an LFI vulnerability in the ...
EUVD-2025-38030
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Dessau dessau allows PHP Local File Inclusion.This issue affects Dessau: from n/a through 1.9...
WordPress Dessau theme < 1.9 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Bonds Patchstack Alliance in WordPress Theme Dessau versions 1.9...
WordPress Dessau Theme < 1.9 is vulnerable to Local File Inclusion
Software Dessau Type Theme Vulnerable versions 1.9 Fixed in 1.9 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-39463 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 0679c8533d71 Credits Bonds Required privilege Unauthenticated Published 17...