6 matches found
CVE-2025-68537
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Zota zota allows PHP Local File Inclusion.This issue affects Zota: from n/a through = 1.3.14...
PT-2025-53099
Name of the Vulnerable Software and Affected Versions thembay Zota versions n/a through 1.3.14 Description An improper control of filename for include/require statement exists in thembay Zota, potentially allowing PHP Local File Inclusion. The issue involves the inclusion of files without proper...
EUVD-2025-28289
Malicious code in bioql PyPI...
CVE-2025-49257
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Zota zota allows PHP Local File Inclusion.This issue affects Zota: from n/a through = 1.3.8...
CVE-2025-49257
CVE-2025-49257 affects the WordPress theme thembay Zota (versions <= 1.3.8). The vulnerability stems from improper control of the filename in Include/Require statements, enabling Local File Inclusion (LFI) via PHP. The issue is documented with high severity (CVSS v3.1 base score 8.1; impact on...
PT-2025-25699 · Thembay · Thembay Zota
Name of the Vulnerable Software and Affected Versions: thembay Zota versions 1.3.8 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability, which allows PHP Local File...