4 matches found
EUVD-2025-12082
Malicious code in bioql PyPI...
CVE-2025-39383
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb Xews Lite xews-lite allows PHP Local File Inclusion.This issue affects Xews Lite: from n/a through = 1.0.9...
CVE-2025-39383
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb Xews Lite xews-lite allows PHP Local File Inclusion.This issue affects Xews Lite: from n/a through = 1.0.9...
CVE-2025-39383
CVE-2025-39383 affects WordPress plugin Xews Lite up to version 1.0.9. It is an unauthenticated Local File Inclusion (LFI) vulnerability caused by improper control of the filename for Include/Require in PHP. The CVSS 3.1 score is 7.5 (HIGH) with NETWORK attack vector, HIGH impact on confidentiali...