CVE-2025-63003

CVE-2025-63003 describes an improper control of Filename for Include/Require in the PHP program, leading to a PHP Local File Inclusion (LFI) via the WordPress plugin “North - Required Plugin” (north-plugin) in versions up to and including 1.4.2. The issue is a PHP Remote File Inclusion style vuln...

WordPress North - Required Plugin plugin <= 1.4.2 - Local File Inclusion vulnerability

WordPress North - Required Plugin plugin = 1.4.2 - Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin North - Required Plugin versions = 1.4.2...