4 matches found
EUVD-2025-11319
Malicious code in bioql PyPI...
CVE-2025-39570
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Lomu WPCOM Member wpcom-member allows PHP Local File Inclusion.This issue affects WPCOM Member: from n/a through = 1.7.7...
CVE-2025-39570
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Lomu WPCOM Member wpcom-member allows PHP Local File Inclusion.This issue affects WPCOM Member: from n/a through = 1.7.7...
CVE-2025-39570
CVE-2025-39570 describes an LFI vulnerability in WordPress plugin WPCOM Member (versions up to and including 1.7.7). The issue arises from improper control of filenames in PHP include/require, enabling local file inclusion. Public records indicate a high-severity exposure (CVSS v3.1 base score 8....