Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)) — Vulnerability Class 1082

1082 vulnerabilities classified as CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-22145 Carbon has an arbitrary file include via unvalidated input passed to Carbon::setLocale — carbon 9.8 -2025-01-08
CVE-2024-53800 WordPress Rezgo Online Booking plugin <= 4.17 - Local File Inclusion vulnerability — Rezgo 9.1 -2025-01-07
CVE-2024-49649 WordPress Build App Online plugin <= 1.0.23 - Local File Inclusion vulnerability — Build App Online 9.8 Critical2025-01-07
CVE-2024-56281 WordPress 워드프레스 결제 심플페이 – 우커머스 결제 플러그인 plugin <= 5.2.0 - Local File Inclusion vulnerability — 워드프레스 결제 심플페이 7.5 High2025-01-07
CVE-2024-56282 WordPress WPMozo Addons Lite for Elementor plugin <= 1.1.0 - Local File Inclusion vulnerability — WPMozo Addons Lite for Elementor 7.5 High2025-01-07
CVE-2025-22305 WordPress Hero Banner Ultimate plugin <= 1.4.4 - Local File Inclusion vulnerability — Hero Banner Ultimate 6.5 Medium2025-01-07
CVE-2025-22364 WordPress Ach Invoice App plugin <= 1.0.1 - Local File Inclusion vulnerability — Ach Invoice App 7.5 High2025-01-07
CVE-2024-56216 WordPress Themify Builder plugin <= 7.6.3 - Local File Inclusion vulnerability — Themify Builder 6.5 Medium2024-12-31
CVE-2024-56230 WordPress Dynamic Product Category Grid, Slider for WooCommerce plugin <= 1.1.3 - Local File Inclusion vulnerability — Dynamic Product Category Grid, Slider for WooCommerce 7.5 High2024-12-31
CVE-2024-12272 WP Travel Engine – Elementor Widgets | Create Travel Booking Website Using WordPress and Elementor <= 1.3.7 - Authenticated (Contributor+) Local File Inclusion — WP Travel Engine – Elementor Widgets | Create Travel Booking Website Using WordPress and Elementor 8.8 High2024-12-25
CVE-2024-12571 Store Locator <= 3.98.10 - Unauthenticated Local File Inclusion — Store Locator for WordPress with Google Maps – LotsOfLocales 9.8 Critical2024-12-20
CVE-2024-54270 WordPress Axeptio plugin <= 2.5.4 - Local File Inclusion vulnerability — Axeptio 8.1 High2024-12-18
CVE-2024-54376 WordPress EazyDocs plugin <= 2.8.0 - Local File Inclusion vulnerability — EazyDocs 7.5 High2024-12-16
CVE-2024-12040 Product Carousel Slider & Grid Ultimate for WooCommerce <= 1.9.10 - Authenticated (Contributor+) Local File Inclusion via 'theme' — Product Carousel Slider & Grid Ultimate for WooCommerce 8.8 High2024-12-12
CVE-2024-52385 WordPress Team Member – Multi Language Supported Team plugin <= 7.4 - Limited Local File Inclusion vulnerability — Team Member 4.3 Medium2024-12-09
CVE-2024-54225 WordPress Designer plugin <= 1.4.1 - Local File Inclusion vulnerability — Designer 7.5 High2024-12-09
CVE-2024-12209 WP Umbrella: Update Backup Restore & Monitoring <= 2.17.0 - Unauthenticated Local File Inclusion — WP Umbrella: Update Backup Restore & Monitoring 9.8 Critical2024-12-08
CVE-2024-53824 WordPress All Bootstrap Blocks plugin <= 1.3.20 - Local File Inclusion vulnerability — All Bootstrap Blocks 7.5 High2024-12-06
CVE-2024-11289 Soledad <= 8.5.9 - Unauthenticated Limited Local File Inclusion — Soledad 8.1 High2024-12-06
CVE-2024-51541 Local File Inclusion — ASPECT-Enterprise 8.2 High2024-12-05
CVE-2024-11429 Free Responsive Testimonials, Social Proof Reviews, and Customer Reviews – Stars Testimonials <= 3.3.3 - Authenticated (Contributor+) Local File Inclusion — Stars Testimonials — Responsive Reviews & Star Ratings 8.8 High2024-12-05
CVE-2024-53739 WordPress Cryptocurrency Widgets For Elementor plugin <= 1.6.4 - Local File Inclusion vulnerability — Cryptocurrency Widgets For Elementor 8.1 High2024-11-30
CVE-2024-52496 WordPress Absolute Addons For Elementor plugin <= 1.0.14 - Local File Inclusion vulnerability — Absolute Addons For Elementor 7.5 High2024-11-28
CVE-2024-52497 WordPress Shopready plugin <= 3.6 - Local File Inclusion vulnerability — Shopready 7.5 High2024-11-28
CVE-2024-52499 WordPress Pricing table addon for elementor plugin <= 1.0.0 - Local File Inclusion vulnerability — Pricing table addon for elementor 7.5 High2024-11-28
CVE-2024-52501 WordPress Office Locator plugin <= 1.3.0 - Local File Inclusion vulnerability — Office Locator 7.5 High2024-11-28
CVE-2024-10873 LA-Studio Element Kit for Elementor <= 1.4.2 - Authenticated (Contributor+) Local File Inclusion — LA-Studio Element Kit for Elementor 8.8 High2024-11-23
CVE-2024-10898 Contact Form 7 Email Add on <= 1.9 - Authenticated (Contributor+) Local File Inclusion — Email addon for CF7 8.8 High2024-11-21
CVE-2024-52450 WordPress nBlocks plugin <= 1.0.2 - Local File Inclusion vulnerability — nBlocks 7.5 High2024-11-20
CVE-2024-52428 WordPress Ads Booster by Ads Pro plugin <= 1.12 - Local File Inclusion vulnerability — Ads Booster by Ads Pro 8.1 High2024-11-18

Vulnerabilities classified as CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)) represent 1082 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.