CVE-2025-52814 WordPress BRW plugin <= 1.8.8 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme BRW ova-brw allows PHP Local File Inclusion.This issue affects BRW: from n/a through = 1.8.7...

WordPress BRW plugin <= 1.8.6 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin BRW versions = 1.8.6...