5 matches found
CVE-2025-39475
Path Traversal: '.../...//' vulnerability in Frenify Arlo arlo allows PHP Local File Inclusion.This issue affects Arlo: from n/a through = 6.0.3...
CVE-2025-39475 WordPress Arlo <= 6.0.3 - Local File Inclusion Vulnerability
Path Traversal vulnerability in Frenify Arlo allows PHP Local File Inclusion. This issue affects Arlo: from n/a through 6.0.3...
CVE-2025-39475 WordPress Arlo theme <= 6.0.3 - Local File Inclusion Vulnerability
Path Traversal: '.../...//' vulnerability in Frenify Arlo arlo allows PHP Local File Inclusion.This issue affects Arlo: from n/a through = 6.0.3...
CVE-2025-39475
CVE-2025-39475 affects the WordPress Arlo plugin/theme up to version 6.0.3, with an unauthenticated path traversal that enables PHP local file inclusion. Public sources indicate this is currently unpatched (per Wordfence details for Arlo ≤ 6.0.3). The CNVD entry describes the same path traversal ...
WordPress Arlo Theme <= 6.0.3 is vulnerable to Local File Inclusion
Software Arlo Type Theme Vulnerable versions = 6.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-39475 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID eaea2827ac9d Credits Bonds Required privilege Unauthenticated Published 3...