Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/01/23 9:16 p.m.4 views

CVE-2025-68905

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jegtheme JNews - Pay Writer jnews-pay-writer allows PHP Local File Inclusion.This issue affects JNews - Pay Writer: from n/a through = 11.0.0...

7.5CVSS5.5AI score0.00397EPSS
Exploits0References1
NVD
NVD
added 2026/01/22 5:16 p.m.4 views

CVE-2025-68905

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jegtheme JNews - Pay Writer jnews-pay-writer allows PHP Local File Inclusion.This issue affects JNews - Pay Writer: from n/a through = 11.0.0...

7.5CVSS0.00397EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/22 4:52 p.m.16 views

CVE-2025-68905 WordPress JNews - Pay Writer plugin <= 11.0.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jegtheme JNews - Pay Writer jnews-pay-writer allows PHP Local File Inclusion.This issue affects JNews - Pay Writer: from n/a through = 11.0.0...

7.5CVSS0.00397EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/22 4:52 p.m.1 views

CVE-2025-68905 WordPress JNews - Pay Writer plugin <= 11.0.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jegtheme JNews - Pay Writer jnews-pay-writer allows PHP Local File Inclusion.This issue affects JNews - Pay Writer: from n/a through = 11.0.0...

7.5CVSS5.9AI score0.00397EPSS
Exploits0References1
CVE
CVE
added 2026/01/22 4:52 p.m.9 views

CVE-2025-68905

CVE-2025-68905 is a Local File Inclusion vulnerability in the WordPress plugin JNews - Pay Writer (jegtheme JNews - Pay Writer) affecting versions up to and including 11.0.0. The issue arises from improper control of filenames used in PHP include/require statements, enabling an attacker to includ...

7.5CVSS5.5AI score0.00397EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/22 4:52 p.m.4 views

CVE-2025-68905

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jegtheme JNews - Pay Writer jnews-pay-writer allows PHP Local File Inclusion.This issue affects JNews - Pay Writer: from n/a through = 11.0.0...

7.5CVSS5.4AI score0.00397EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.5 views

PT-2026-4107

Name of the Vulnerable Software and Affected Versions jegtheme JNews - Pay Writer versions through 11.0.0 Description A flaw exists in jegtheme JNews - Pay Writer that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue potentially...

5.5AI score0.00397EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/22 12:0 a.m.9 views

WordPress plugin JNews – Pay Writer has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

7.5CVSS5.8AI score0.00397EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/13 7:56 a.m.6 views

WordPress JNews - Pay Writer plugin <= 11.0.0 - Local File Inclusion vulnerability

WordPress JNews - Pay Writer plugin = 11.0.0 - Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin JNews - Pay Writer versions = 11.0.0...

7.5CVSS7AI score0.00397EPSS
Exploits0Affected Software1
Rows per page
Query Builder