CVE-2025-22279

CVE-2025-22279 (JetCompareWishlist for Elementor) is an authenticated LFI in the PHP Include/Require flow, allowing local file disclosure. Affected versions: JetCompareWishlist up through 1.5.9. Risk cited in the entry is HIGH (CVSS 3.1: 7.5). Remediation: update to JetCompareWishlist 1.5.9 or ne...

WordPress JetCompareWishlist plugin <= 1.5.9 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin JetCompareWishlist versions = 1.5.9...