5 matches found
CVE-2025-4414
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in cmsmasters CMSMasters Content Composer cmsmasters-content-composer allows PHP Local File Inclusion.This issue affects CMSMasters Content Composer: from n/a through 2.5.7...
CVE-2025-4414
creationtimestamp| type| source ---|---|--- 2025-07-04 13:03:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lt5cjppfhb2p...
CVE-2025-4414 WordPress CMSMasters Content Composer plugin < 2.5.7 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in cmsmasters CMSMasters Content Composer cmsmasters-content-composer allows PHP Local File Inclusion.This issue affects CMSMasters Content Composer: from n/a through 2.5.7...
CVE-2025-4414 WordPress CMSMasters Content Composer < 2.5.7 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in cmsmasters CMSMasters Content Composer allows PHP Local File Inclusion. This issue affects CMSMasters Content Composer: from n/a through n/a...
CVE-2025-4414
CVE-2025-4414 concerns the WordPress CMSMasters Content Composer plugin. The vulnerability is an improper control of the filename used in Include/Require, enabling PHP Local File Inclusion (LFI) due to insufficient filtering of local file resource calls in CMSMasters Content Composer. Affected pr...