Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)) — Vulnerability Class 1082

1082 vulnerabilities classified as CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-3703 WordPress CSS & JavaScript Toolbox plugin < 12.0.3 - Local File Inclusion vulnerability — CSS & JavaScript Toolbox 7.5 High2025-08-14
CVE-2025-24766 WordPress News Magazine X <= 1.2.35 - Local File Inclusion Vulnerability — News Magazine X 7.5 High2025-08-14
CVE-2025-25172 WordPress VidMov <= 1.9.4 - Local File Inclusion Vulnerability — VidMov 8.1 High2025-08-14
CVE-2025-25174 WordPress BeeTeam368 Extensions Plugin <= 1.9.4 - Local File Inclusion Vulnerability — BeeTeam368 Extensions 10.0 Critical2025-08-14
CVE-2025-28979 WordPress WP Pipes <= 1.4.3 - Local File Inclusion Vulnerability — WP Pipes 8.1 High2025-08-14
CVE-2025-30635 WordPress IDonatePro <= 2.1.9 - Local File Inclusion Vulnerability — IDonatePro 8.1 High2025-08-14
CVE-2025-32288 WordPress RT-Theme 18 | Extensions plugin <= 2.4 - Local File Inclusion Vulnerability — RT-Theme 18 | Extensions 7.5 High2025-08-14
CVE-2025-48293 WordPress Geo Mashup plugin <= 1.13.16 - Local File Inclusion vulnerability — Geo Mashup 9.8 Critical2025-08-14
CVE-2025-48332 WordPress Gutenberg Blocks <= 3.3.1 - Local File Inclusion Vulnerability — Gutenberg Blocks 7.5 High2025-08-14
CVE-2025-49036 WordPress Premium Addons for KingComposer Plugin <= 1.1.1 - Local File Inclusion Vulnerability — Premium Addons for KingComposer 8.1 High2025-08-14
CVE-2025-49264 WordPress Cloud SAML SSO - Single Sign On Login <= 1.0.18 - Local File Inclusion Vulnerability — Cloud SAML SSO - Single Sign On Login 7.5 High2025-08-14
CVE-2025-49271 WordPress GravityWP - Merge Tags <= 1.4.4 - Local File Inclusion Vulnerability — GravityWP - Merge Tags 7.5 High2025-08-14
CVE-2025-52716 WordPress WP REST Cache <= 2025.1.0 - Local File Inclusion Vulnerability — WP REST Cache 7.5 High2025-08-14
CVE-2025-52728 WordPress Responsive Posts Carousel WordPress Plugin Plugin <= 15.0 - Local File Inclusion Vulnerability — Responsive Posts Carousel Pro 7.5 High2025-08-14
CVE-2025-52732 WordPress Google Map Targeting Plugin <= 1.1.6 - Local File Inclusion Vulnerability — GMap Targeting 8.8 High2025-08-14
CVE-2025-52806 WordPress JobSearch Plugin < 3.0.8 - Local File Inclusion Vulnerability — JobSearch 7.5 High2025-08-14
CVE-2025-8913 WellChoose|Organization Portal System - Local File Inclusion — Organization Portal System 9.8 Critical2025-08-13
CVE-2012-10025 WordPress Plugin Advanced Custom Fields <= 3.5.1 Remote File Inclusion — WordPress Plugin 9.8AICriticalAI2025-08-05
CVE-2025-6991 Kallyas <= 4.21.0 - Authenticated (Contributor+) Local File Inclusion — KALLYAS - Creative eCommerce Multi-Purpose WordPress Theme 7.5 High2025-07-26
CVE-2025-54138 LibreNMS has Authenticated Local File Inclusion in ajax_form.php that Allows RCE — librenms 7.5 High2025-07-22
CVE-2015-10133 Subscribe to Comments <= 2.1.2 - Local File Includion — Subscribe to Comments 7.2 High2025-07-19
CVE-2025-54015 WordPress HT Contact Form 7 plugin <= 2.0.0 - Local File Inclusion Vulnerability — HT Contact Form 7 6.6 Medium2025-07-16
CVE-2025-6746 WoodMart <= 8.2.3 - Authenticated (Contributor+) Local File Inclusion — Woodmart 8.8 High2025-07-08
CVE-2025-7327 Widget for Google Reviews <= 1.0.15 - Authenticated (Subscriber+) Directory Traversal to Local File Inclusion — Widget for Google Reviews 8.8 High2025-07-08
CVE-2025-47627 WordPress PrivateContent - Mail Actions plugin <= 2.3.2 - Local File Inclusion vulnerability — PrivateContent - Mail Actions 7.5 High2025-07-04
CVE-2025-52807 WordPress Kossy - Minimalist eCommerce WordPress Theme <= 1.45 - Local File Inclusion Vulnerability — Kossy - Minimalist eCommerce WordPress Theme 8.1 High2025-07-04
CVE-2025-4414 WordPress CMSMasters Content Composer plugin < 2.5.7 - Local File Inclusion vulnerability — CMSMasters Content Composer 8.1 High2025-07-04
CVE-2025-49070 WordPress Elessi < 6.4.1 - Local File Inclusion Vulnerability — Elessi 7.5 High2025-07-04
CVE-2025-4380 Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.89 - Unauthenticated Local File Inclusion — Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager 8.1 High2025-07-02
CVE-2025-4689 Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.89 - Unauthenticated Local File Inclusion to Remote Code Execution — Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager 9.8 Critical2025-07-02

Vulnerabilities classified as CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)) represent 1082 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.