exploitDog

GHSA-xv26-8c3v-gqcv

Опубликовано: 28 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ovatheme Ireca allows PHP Local File Inclusion. This issue affects Ireca: from n/a through 1.8.5.

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ovatheme Ireca allows PHP Local File Inclusion. This issue affects Ireca: from n/a through 1.8.5.

Ссылки

EPSS

Процентиль: 22%

0.00073

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-98

Связанные уязвимости

CVE-2025-54716

nvd

7 месяцев назад

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ovatheme Ireca ireca allows PHP Local File Inclusion.This issue affects Ireca: from n/a through <= 1.8.5.

EPSS

Процентиль: 22%

0.00073

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-98