3 matches found
CVE-2025-49259
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Hara hara allows PHP Local File Inclusion.This issue affects Hara: from n/a through = 1.2.10...
CVE-2025-49259
CVE-2025-49259 affects the Hara WordPress theme (thembay) up to version 1.2.10, due to improper control of the filename in PHP include/require statements, enabling Local File Inclusion. Patch Stack indicates fixed in 1.2.11; Red Hat and Wordfence references corroborate LFI exposure in these versi...
CVE-2025-49259 WordPress Hara theme <= 1.2.10 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Hara hara allows PHP Local File Inclusion.This issue affects Hara: from n/a through = 1.2.10...