4 matches found
CVE-2025-23938
creationtimestamp| type| source ---|---|--- 2025-01-22 15:21:36+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdoadmwr42f 2025-01-22 17:13:43+00:00| seen| https://t.me/cvedetector/16104...
CVE-2025-23938
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CRUDLab Image Gallery Box by CRUDLab image-gallery-box-by-crudlab allows PHP Local File Inclusion.This issue affects Image Gallery Box by CRUDLab: from n/a through = 1.0.3...
CVE-2025-23938 WordPress Image Gallery Box by CRUDLab Plugin <= 1.0.3 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CRUDLab Image Gallery Box by CRUDLab image-gallery-box-by-crudlab allows PHP Local File Inclusion.This issue affects Image Gallery Box by CRUDLab: from n/a through = 1.0.3...
CVE-2025-23938
CVE-2025-23938 affects Image Gallery Box by CRUDLab (WordPress plugin). Red Hat and WordPress vulnerability data describe an Authenticated Local File Inclusion (LFI) caused by improper handling of filename includes in PHP, enabling access to local files via NotFound Image Gallery Box pages. Affec...