exploitDog

CVE-2025-28998

Опубликовано: 27 июн. 2025

Источник: nvd

EPSS Низкий

Описание

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in serpednet SERPed.net serped-net allows PHP Local File Inclusion.This issue affects SERPed.net: from n/a through <= 4.6.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/serped-net/vulnerability/wordpress-serped-net-4-6-local-file-inclusion-vulnerability?_s_id=cve

EPSS

Процентиль: 26%

0.00092

Низкий

Дефекты

CWE-98

Связанные уязвимости

GHSA-xq6v-6r3h-fhg4

CVSS3: 8.1

github

10 месяцев назад

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in serpednet SERPed.net allows PHP Local File Inclusion. This issue affects SERPed.net: from n/a through 4.6.

EPSS

Процентиль: 26%

0.00092

Низкий

Дефекты

CWE-98