9 matches found
EUVD-2025-12082
Malicious code in bioql PyPI...
CVE-2025-39383
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb Xews Lite xews-lite allows PHP Local File Inclusion.This issue affects Xews Lite: from n/a through = 1.0.9...
CVE-2025-39383
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb Xews Lite xews-lite allows PHP Local File Inclusion.This issue affects Xews Lite: from n/a through = 1.0.9...
CVE-2025-39383
CVE-2025-39383 affects WordPress plugin Xews Lite up to version 1.0.9. It is an unauthenticated Local File Inclusion (LFI) vulnerability caused by improper control of the filename for Include/Require in PHP. The CVSS 3.1 score is 7.5 (HIGH) with NETWORK attack vector, HIGH impact on confidentiali...
CVE-2025-39383 WordPress Xews Lite plugin <= 1.0.9 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in codeworkweb Xews Lite xews-lite allows PHP Local File Inclusion.This issue affects Xews Lite: from n/a through = 1.0.9...
PT-2025-17748 · Xews Lite · Xews Lite
Name of the Vulnerable Software and Affected Versions: Xews Lite versions 1.0.9 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability. This allows PHP Local File...
WordPress plugin Xews Lite 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress Xews Lite plugin <= 1.0.9 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Theme Xews Lite versions = 1.0.9...
WordPress Xews Lite Theme <= 1.0.9 is vulnerable to Local File Inclusion
Software Xews Lite Type Theme Vulnerable versions = 1.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-39383 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID c141546901cd Credits Dimas Maulana Required privilege Unauthenticated...