Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-64qq-cvrh-w3cq

Опубликовано: 09 июн. 2025
Источник: github
Github: Не прошло ревью
CVSS3: 8.1

Описание

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in snstheme Valen - Sport, Fashion WooCommerce WordPress Theme allows PHP Local File Inclusion. This issue affects Valen - Sport, Fashion WooCommerce WordPress Theme: from n/a through 2.4.

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in snstheme Valen - Sport, Fashion WooCommerce WordPress Theme allows PHP Local File Inclusion. This issue affects Valen - Sport, Fashion WooCommerce WordPress Theme: from n/a through 2.4.

Ссылки

EPSS

Процентиль: 31%
0.00118
Низкий

8.1 High

CVSS3

CVE ID

CVE-2025-28945

Дефекты

CWE-98

Связанные уязвимости

nvd логотип

CVE-2025-28945

CVSS3: 8.1
nvd
8 месяцев назад

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in snstheme Valen - Sport, Fashion WooCommerce WordPress Theme allows PHP Local File Inclusion. This issue affects Valen - Sport, Fashion WooCommerce WordPress Theme: from n/a through 2.4.

EPSS

Процентиль: 31%
0.00118
Низкий

8.1 High

CVSS3

CVE ID

CVE-2025-28945

Дефекты

CWE-98