EUVD-2025-17485

Malicious code in bioql PyPI...

CVE-2025-28944

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme Avaz snsavaz allows PHP Local File Inclusion.This issue affects Avaz: from n/a through = 2.8...

CVE-2025-28944

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme Avaz snsavaz allows PHP Local File Inclusion.This issue affects Avaz: from n/a through = 2.8...

CVE-2025-28944 WordPress Avaz theme <= 2.8 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme Avaz snsavaz allows PHP Local File Inclusion.This issue affects Avaz: from n/a through = 2.8...

CVE-2025-28944

CVE-2025-28944 affects Avaz WordPress theme (versions n/a through 2.8). It is an Unauthenticated Local File Inclusion due to improper control of filenames for PHP Include/Require, enabling PHP LFI. CVSS v3.1 base score 8.1 (HIGH) with network attack vector, high impact on confidentiality, integri...

WordPress Avaz theme <= 2.8 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Avaz versions = 2.8...

WordPress Avaz Theme <= 2.8 is vulnerable to Local File Inclusion

Software Avaz Type Theme Vulnerable versions = 2.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-28944 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 1dc6fdd3ef9e Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity Required...