6 matches found
CVE-2025-39359
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb CWW Portfolio cww-portfolio allows PHP Local File Inclusion.This issue affects CWW Portfolio: from n/a through = 1.3.1...
CVE-2025-39359
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb CWW Portfolio cww-portfolio allows PHP Local File Inclusion.This issue affects CWW Portfolio: from n/a through = 1.3.1...
CVE-2025-39359
CVE-2025-39359 corresponds to a Local File Inclusion in WordPress Theme CWW Portfolio (WordPress plugin/theme) version 1.3.1 and earlier. The vulnerability arises from improper control of filenames in PHP Include/Require, enabling LFI. Connected patch/patchstack entries confirm affected software:...
CVE-2025-39359 WordPress CWW Portfolio theme <= 1.3.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb CWW Portfolio cww-portfolio allows PHP Local File Inclusion.This issue affects CWW Portfolio: from n/a through = 1.3.1...
CVE-2025-39359 WordPress CWW Portfolio theme <= 1.3.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb CWW Portfolio cww-portfolio allows PHP Local File Inclusion.This issue affects CWW Portfolio: from n/a through = 1.3.1...
WordPress CWW Portfolio Theme <= 1.3.1 is vulnerable to Local File Inclusion
Software CWW Portfolio Type Theme Vulnerable versions = 1.3.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-39359 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID ee2d399fdc37 Credits Dimas Maulana Required privilege...