EUVD-2025-17544

Malicious code in bioql PyPI...

WordPress Blogty theme <= 1.0.11 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Le Ngoc Anh in WordPress Theme Blogty versions = 1.0.11...

WordPress Blogty Theme <= 1.0.11 is vulnerable to Local File Inclusion

Software Blogty Type Theme Vulnerable versions = 1.0.11 Fixed in 1.0.12 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-49278 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 52a382e787f1 Credits Le Ngoc Anh Required privilege Unauthenticated...

WordPress Blogty plugin file inclusion vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A file inclusion vulnerability exists in the WordPress Blogty plugin that stems from not doing effective filtering of local file resource calls, which can be exploited by an...

CVE-2025-49278

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in unfoldwp Blogty blogty allows PHP Local File Inclusion.This issue affects Blogty: from n/a through = 1.0.11...

CVE-2025-49278

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in unfoldwp Blogty blogty allows PHP Local File Inclusion.This issue affects Blogty: from n/a through = 1.0.11...

CVE-2025-49278 WordPress Blogty theme <= 1.0.11 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in unfoldwp Blogty blogty allows PHP Local File Inclusion.This issue affects Blogty: from n/a through = 1.0.11...

CVE-2025-49278

Summary: CVE-2025-49278 affects the WordPress theme Blogty (Unfoldwp Blogty) via an improper filename handling in include/require statements, enabling Local File Inclusion (LFI). Affected software: Blogty versions up to 1.0.11 (n/a through 1.0.11). Root cause: Inadequate validation of file paths ...

CVE-2025-49278 WordPress Blogty theme <= 1.0.11 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in unfoldwp Blogty blogty allows PHP Local File Inclusion.This issue affects Blogty: from n/a through = 1.0.11...

WordPress plugin Blogty 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A file inclusion vulnerability exists in the WordPress Blogty plugin that stems from not doing effective filtering of local file resource calls, which can be exploited by an...

PT-2025-24531 · Unknown · Unfoldwp Blogty

Name of the Vulnerable Software and Affected Versions: Unfoldwp Blogty versions 1.0.0 through 1.0.11 Description: The issue is related to improper control of filename for include/require statement in PHP program, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusion...