Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/26 5:4 p.m.13 views

CVE-2025-39359

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb CWW Portfolio cww-portfolio allows PHP Local File Inclusion.This issue affects CWW Portfolio: from n/a through = 1.3.1...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References1
NVD
NVD
added 2025/04/24 4:15 p.m.20 views

CVE-2025-39359

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb CWW Portfolio cww-portfolio allows PHP Local File Inclusion.This issue affects CWW Portfolio: from n/a through = 1.3.1...

7.5CVSS0.00611EPSS
Exploits0References1
CVE
CVE
added 2025/04/24 4:8 p.m.53 views

CVE-2025-39359

CVE-2025-39359 corresponds to a Local File Inclusion in WordPress Theme CWW Portfolio (WordPress plugin/theme) version 1.3.1 and earlier. The vulnerability arises from improper control of filenames in PHP Include/Require, enabling LFI. Connected patch/patchstack entries confirm affected software:...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/24 4:8 p.m.5 views

CVE-2025-39359 WordPress CWW Portfolio theme <= 1.3.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb CWW Portfolio cww-portfolio allows PHP Local File Inclusion.This issue affects CWW Portfolio: from n/a through = 1.3.1...

7.5CVSS7.2AI score0.00611EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/24 4:8 p.m.44 views

CVE-2025-39359 WordPress CWW Portfolio theme <= 1.3.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb CWW Portfolio cww-portfolio allows PHP Local File Inclusion.This issue affects CWW Portfolio: from n/a through = 1.3.1...

7.5CVSS0.00611EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/21 12:0 a.m.5 views

WordPress CWW Portfolio Theme <= 1.3.1 is vulnerable to Local File Inclusion

Software CWW Portfolio Type Theme Vulnerable versions = 1.3.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-39359 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID ee2d399fdc37 Credits Dimas Maulana Required privilege...

7.5CVSS6.8AI score0.00611EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder