Lucene search
+L

4 matches found

NVD
NVD
added 2025/03/26 3:16 p.m.10 views

CVE-2025-23952

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ntm custom-field-list-widget custom-field-list-widget allows PHP Local File Inclusion.This issue affects custom-field-list-widget: from n/a through = 1.5.1...

8.1CVSS0.00981EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/26 2:24 p.m.18 views

CVE-2025-23952 WordPress Custom Field List Widget Plugin <= 1.5.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ntm custom-field-list-widget custom-field-list-widget allows PHP Local File Inclusion.This issue affects custom-field-list-widget: from n/a through = 1.5.1...

8.1CVSS0.00981EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/26 2:24 p.m.3 views

CVE-2025-23952 WordPress Custom Field List Widget Plugin <= 1.5.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ntm custom-field-list-widget custom-field-list-widget allows PHP Local File Inclusion.This issue affects custom-field-list-widget: from n/a through = 1.5.1...

8.1CVSS7.2AI score0.00981EPSS
Exploits0References1
CVE
CVE
added 2025/03/26 2:24 p.m.47 views

CVE-2025-23952

CVE-2025-23952 describes an Unvalidated Filename handling flaw in WordPress plugin Custom Field List Widget (ntm custom-field-list-widget) that allows Local File Inclusion via PHP include/require. Affected: custom-field-list-widget versions

8.1CVSS7.2AI score0.00981EPSS
Exploits0References1
Rows per page
Query Builder