5 matches found
CVE-2025-48290
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in bslthemes Kinsley kinsley allows PHP Local File Inclusion.This issue affects Kinsley: from n/a through = 3.4.4...
CVE-2025-48290 WordPress Kinsley theme <= 3.4.4 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in bslthemes Kinsley kinsley allows PHP Local File Inclusion.This issue affects Kinsley: from n/a through = 3.4.4...
CVE-2025-48290 WordPress Kinsley theme <= 3.4.4 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in bslthemes Kinsley kinsley allows PHP Local File Inclusion.This issue affects Kinsley: from n/a through = 3.4.4...
CVE-2025-48290
CVE-2025-48290 affects the WordPress Kinsley theme (and related WordPress ecosystem references) up to version 3.4.4, due to improper control of filenames for include/require statements, enabling Local File Inclusion (LFI). Root cause: PHP filename handling flaw in the Kinsley theme’s include/requ...
WordPress Kinsley theme <= 3.4.4 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Bonds Patchstack Alliance in WordPress Theme Kinsley versions = 3.4.4...