Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/09 3:24 p.m.11 views

CVE-2025-47531

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Xylus Themes XT Event Widget for Social Events xt-facebook-events allows PHP Local File Inclusion.This issue affects XT Event Widget for Social Events: from n/a through = 1.1.7...

8.8CVSS7.2AI score0.00549EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 3:16 p.m.16 views

CVE-2025-47531

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Xylus Themes XT Event Widget for Social Events xt-facebook-events allows PHP Local File Inclusion.This issue affects XT Event Widget for Social Events: from n/a through = 1.1.7...

8.8CVSS0.00549EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 2:20 p.m.5 views

CVE-2025-47531 WordPress XT Event Widget for Social Events plugin <= 1.1.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Xylus Themes XT Event Widget for Social Events xt-facebook-events allows PHP Local File Inclusion.This issue affects XT Event Widget for Social Events: from n/a through = 1.1.7...

7.5CVSS8.7AI score0.00549EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 2:20 p.m.26 views

CVE-2025-47531 WordPress XT Event Widget for Social Events plugin <= 1.1.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Xylus Themes XT Event Widget for Social Events xt-facebook-events allows PHP Local File Inclusion.This issue affects XT Event Widget for Social Events: from n/a through = 1.1.7...

7.5CVSS0.00549EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 2:20 p.m.51 views

CVE-2025-47531

CVE-2025-47531 applies to the WordPress plugin “XT Event Widget for Social Events” (Xylus Themes). The issue is an improper control of filename for include/require statements, enabling Local File Inclusion. Affected versions are up to 1.1.7; exploitation context is limited to LFI within the plugi...

8.8CVSS7.2AI score0.00549EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/05/07 12:39 p.m.14 views

WordPress XT Event Widget for Social Events plugin <= 1.1.7 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by timomangcut in WordPress Plugin XT Event Widget for Social Events versions = 1.1.7...

8.8CVSS8.2AI score0.00549EPSS
Exploits0Affected Software1
Rows per page
Query Builder