Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/03/29 11:36 a.m.6 views

CVE-2025-30871

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel Engine WP Travel Engine wp-travel-engine allows PHP Local File Inclusion.This issue affects WP Travel Engine: from n/a through = 6.3.5...

7.5CVSS7.2AI score0.00905EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/03/27 11:15 a.m.4 views

CVE-2025-30871

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel Engine WP Travel Engine wp-travel-engine allows PHP Local File Inclusion.This issue affects WP Travel Engine: from n/a through = 6.3.5...

7.5CVSS7.2AI score0.00905EPSS
Exploits0References3
NVD
NVD
added 2025/03/27 11:15 a.m.6 views

CVE-2025-30871

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel Engine WP Travel Engine wp-travel-engine allows PHP Local File Inclusion.This issue affects WP Travel Engine: from n/a through = 6.3.5...

7.5CVSS0.00905EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/27 10:55 a.m.16 views

CVE-2025-30871 WordPress WP Travel Engine plugin <= 6.3.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel Engine WP Travel Engine wp-travel-engine allows PHP Local File Inclusion.This issue affects WP Travel Engine: from n/a through = 6.3.5...

7.5CVSS0.00905EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/27 10:55 a.m.6 views

CVE-2025-30871 WordPress WP Travel Engine plugin <= 6.3.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel Engine WP Travel Engine wp-travel-engine allows PHP Local File Inclusion.This issue affects WP Travel Engine: from n/a through = 6.3.5...

7.5CVSS7.4AI score0.00905EPSS
Exploits0References1
CVE
CVE
added 2025/03/27 10:55 a.m.53 views

CVE-2025-30871

CVE-2025-30871 is a WordPress vulnerability in the WP Travel Engine plugin caused by improper control of filenames for include/require statements , enabling unauthenticated access to a PHP Local File Inclusion (LFI). Affected versions: WP Travel Engine

7.5CVSS7.2AI score0.00905EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder