Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/06/11 4:3 p.m.6 views

CVE-2025-24770

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme CraftXtore bw-craftxtore allows PHP Local File Inclusion.This issue affects CraftXtore: from n/a through = 1.7...

8.1CVSS7.2AI score0.00519EPSS
Exploits0References1
NVD
NVD
added 2025/06/09 4:15 p.m.13 views

CVE-2025-24770

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme CraftXtore bw-craftxtore allows PHP Local File Inclusion.This issue affects CraftXtore: from n/a through = 1.7...

8.1CVSS0.00519EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/09 3:56 p.m.2 views

CVE-2025-24770 WordPress CraftXtore theme <= 1.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme CraftXtore bw-craftxtore allows PHP Local File Inclusion.This issue affects CraftXtore: from n/a through = 1.7...

8.1CVSS7.9AI score0.00519EPSS
Exploits0References1
CVE
CVE
added 2025/06/09 3:56 p.m.53 views

CVE-2025-24770

CVE-2025-24770 corresponds to a PHP Local File Inclusion in CraftXtore (WordPress theme) via improper filename handling in include/require. Affects CraftXtore

8.1CVSS7.2AI score0.00519EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/09 3:56 p.m.32 views

CVE-2025-24770 WordPress CraftXtore theme <= 1.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme CraftXtore bw-craftxtore allows PHP Local File Inclusion.This issue affects CraftXtore: from n/a through = 1.7...

8.1CVSS0.00519EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/06/09 12:0 a.m.9 views

WordPress CraftXtore Theme <= 1.7 is vulnerable to Local File Inclusion

Software CraftXtore Type Theme Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-24770 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID db65eb0ec141 Credits Phat RiO - BlueRock Required privilege...

8.1CVSS7.2AI score0.00519EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder