exploitDog

CVE-2025-54716

Опубликовано: 28 авг. 2025

Источник: nvd

EPSS Низкий

Описание

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ovatheme Ireca ireca allows PHP Local File Inclusion.This issue affects Ireca: from n/a through <= 1.8.5.

Ссылки

https://patchstack.com/database/Wordpress/Theme/ireca/vulnerability/wordpress-ireca-theme-1-8-5-local-file-inclusion-vulnerability?_s_id=cve

EPSS

Процентиль: 22%

0.00073

Низкий

Дефекты

CWE-98

Связанные уязвимости

GHSA-xv26-8c3v-gqcv

CVSS3: 8.1

github

7 месяцев назад

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ovatheme Ireca allows PHP Local File Inclusion. This issue affects Ireca: from n/a through 1.8.5.

EPSS

Процентиль: 22%

0.00073

Низкий

Дефекты

CWE-98