Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)) — Vulnerability Class 1082

1082 vulnerabilities classified as CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-49428 WordPress Spirit Framework plugin <= 1.2.13 - Local File Inclusion vulnerability — Spirit Framework 7.5 High2025-08-20
CVE-2025-49436 WordPress Anotte theme <= 1.8 - Local File Inclusion vulnerability — Anotte 8.1 High2025-08-20
CVE-2025-49889 WordPress Edge CPT plugin <= 1.4 - Local File Inclusion vulnerability — Edge CPT 8.1 High2025-08-20
CVE-2025-49438 WordPress Talemy Theme <= 1.2.23 - Local File Inclusion Vulnerability — Talemy 8.1 High2025-08-20
CVE-2025-49892 WordPress Uxper Booking Plugin <= 1.3.3 - Local File Inclusion Vulnerability — Uxper Booking 8.1 High2025-08-20
CVE-2025-49894 WordPress Nuss Theme <= 1.3.3 - Local File Inclusion Vulnerability — Nuss 8.1 High2025-08-20
CVE-2025-48149 WordPress Cook&Meal <= 1.2.3 - Local File Inclusion Vulnerability — Cook&Meal 8.1 High2025-08-20
CVE-2025-48157 WordPress Formality <= 1.5.9 - Local File Inclusion Vulnerability — Formality 8.1 High2025-08-20
CVE-2025-48160 WordPress Caliris <= 1.5 - Local File Inclusion Vulnerability — Caliris 8.1 High2025-08-20
CVE-2025-48171 WordPress Cena Store <= 2.11.26 - Local File Inclusion Vulnerability — Cena Store 8.1 High2025-08-20
CVE-2025-48298 WordPress SEOPress for MainWP <= 1.4 - Local File Inclusion Vulnerability — SEOPress for MainWP 7.5 High2025-08-20
CVE-2025-48302 WordPress FundEngine Plugin <= 1.7.4 - Local File Inclusion Vulnerability — FundEngine 7.5 High2025-08-20
CVE-2025-53198 WordPress Houzez theme <= 4.0.4 - Local File Inclusion Vulnerability — Houzez 8.1 High2025-08-20
CVE-2025-53204 WordPress eventlist plugin <= 1.9.2 - Local File Inclusion Vulnerability — eventlist 8.1 High2025-08-20
CVE-2025-53207 WordPress WP Travel Gutenberg Blocks plugin <= 3.9.0 - Local File Inclusion Vulnerability — WP Travel Gutenberg Blocks 8.1 High2025-08-20
CVE-2025-53210 WordPress ZoloBlocks Plugin <= 2.3.2 - Local File Inclusion Vulnerability — ZoloBlocks 7.5 High2025-08-20
CVE-2025-53565 WordPress Widget for Google Reviews <= 1.0.15 - Local File Inclusion Vulnerability — Widget for Google Reviews 8.1 High2025-08-20
CVE-2025-53567 WordPress Ghost Kit <= 3.4.1 - Local File Inclusion Vulnerability — Ghost Kit 8.1 High2025-08-20
CVE-2025-54017 WordPress Paid Member Subscriptions <= 2.15.4 - Local File Inclusion Vulnerability — Paid Member Subscriptions 7.5 High2025-08-20
CVE-2025-54028 WordPress CF7 WOW Styler Plugin <= 1.7.2 - Local File Inclusion Vulnerability — CF7 WOW Styler 7.5 High2025-08-20
CVE-2025-54031 WordPress Support Board <= 3.8.0 - Local File Inclusion Vulnerability — Support Board 8.1 High2025-08-20
CVE-2025-54034 WordPress Newsletters plugin <= 4.10 - Local File Inclusion vulnerability — Newsletters 7.5 High2025-08-20
CVE-2025-54750 WordPress Funnel Builder by FunnelKit Plugin <= 3.11.1 - Local File Inclusion Vulnerability — Funnel Builder by FunnelKit 7.5 High2025-08-20
CVE-2025-8142 Soledad <= 8.6.7 - Authenticated (Contributor+) Local File Inclusion via 'header_layout' — Soledad 8.8 High2025-08-16
CVE-2024-8393 Woocommerce Blocks – Woolook <= 1.7.0 - Authenticated (Admin+) Local File Inclusion — Woocommerce Blocks – Woolook 6.6 Medium2025-08-16
CVE-2025-7650 BizCalendar Web <= 1.1.0.53 - Authenticated (Contributor+) Local File Inclusion — BizCalendar Web 7.5 High2025-08-15
CVE-2025-54701 WordPress Unicamp Theme <= 2.6.3 - Local File Inclusion Vulnerability — Unicamp 8.1 High2025-08-14
CVE-2025-54700 WordPress Makeaholic Theme <= 1.8.4 - Local File Inclusion Vulnerability — Makeaholic 8.1 High2025-08-14
CVE-2025-54690 WordPress Xinterio Theme <= 4.2 - Local File Inclusion Vulnerability — Xinterio 8.1 High2025-08-14
CVE-2025-54689 WordPress Urna Theme <= 2.5.7 - Local File Inclusion Vulnerability — Urna 8.1 High2025-08-14

Vulnerabilities classified as CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)) represent 1082 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.