4 matches found
CVE-2025-28992
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme SNS Anton snsanton allows PHP Local File Inclusion.This issue affects SNS Anton: from n/a through = 4.1...
CVE-2025-28992 WordPress SNS Anton theme <= 4.1 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in snstheme SNS Anton snsanton allows PHP Local File Inclusion.This issue affects SNS Anton: from n/a through = 4.1...
CVE-2025-28992
CVE-2025-28992 affects the WordPress theme SNS Anton (versions n/a through 4.1). The vulnerability is an improper control of filename for Include/Require statements, i.e., a PHP Local File Inclusion (LFI) flaw that could enable local file access via include/require. The CVSS3.1 base metrics cited...
WordPress SNS Anton Theme <= 4.1 is vulnerable to Local File Inclusion
Software SNS Anton Type Theme Vulnerable versions = 4.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-28992 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 1a79e587467e Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...