Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)) — Vulnerability Class 1082

1082 vulnerabilities classified as CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-52386 WordPress Classified Listing plugin <= 3.1.16 - Local File Inclusion vulnerability — Classified Listing 5.3 Medium2024-11-16
CVE-2024-52381 WordPress ZIJ KART plugin <= 1.1 - Local File Inclusion vulnerability — ZIJ KART 8.1 High2024-11-14
CVE-2024-10571 Chartify – WordPress Chart Plugin <= 2.9.5 - Unauthenticated Local File Inclusion via source — Chartify – WordPress Chart Plugin 9.8 Critical2024-11-14
CVE-2024-10871 Category Ajax Filter <= 2.8.2 - Unauthenticated Local File Inclusion — Category AJAX Filter – Advanced Filter for Posts & Custom Post Types 9.8 Critical2024-11-09
CVE-2024-10436 WPC Smart Messages for WooCommerce <= 4.2.1 - Authenticated (Subscriber+) Local File Inclusion — WPC Smart Messages for WooCommerce 8.8 High2024-10-29
CVE-2024-50434 WordPress NewsCard theme <= 1.3 - Local File Inclusion vulnerability — NewsCard 7.5 High2024-10-28
CVE-2024-50435 WordPress Meta News theme <= 1.1.7 - Local File Inclusion vulnerability — Meta News 7.5 High2024-10-28
CVE-2024-50436 WordPress Clean Retina theme <= 3.0.6 - Local File Inclusion vulnerability — Clean Retina 7.5 High2024-10-28
CVE-2024-50457 WordPress Qode Essential Addons plugin <= 1.6.3 - Local File Inclusion vulnerability — Qode Essential Addons 7.5 High2024-10-28
CVE-2024-50497 WordPress Advanced Online Ordering and Delivery Platform plugin <= 2.0.0 - Local File Inclusion vulnerability — Advanced Online Ordering and Delivery Platform 8.1 High2024-10-28
CVE-2024-8392 WordPress Post Grid Layouts with Pagination – Sogrid <= 1.5.6 - Authenticated (Admin+) Local File Inclusion — WordPress Post Grid Layouts with Pagination – Sogrid 7.2 High2024-10-26
CVE-2024-49690 WordPress Qi Blocks plugin <= 1.3.2 - Local File Inclusion vulnerability — Qi Blocks 7.5 High2024-10-23
CVE-2024-49701 WordPress Mags theme <= 1.1.6 - Local File Inclusion vulnerability — Mags 7.5 High2024-10-23
CVE-2024-49243 WordPress Dynamic Elementor Addons plugin <= 1.0.0 - Local File Inclusion vulnerability — Dynamic Elementor Addons 7.5 High2024-10-18
CVE-2024-49317 WordPress Point Maker plugin <= 0.1.4 - Local File Inclusion vulnerability — Point Maker 8.1AIHighAI2024-10-17
CVE-2024-48029 WordPress SB Random Posts Widget plugin <= 1.0 - Local File Inclusion vulnerability — SB Random Posts Widget 7.5 High2024-10-16
CVE-2024-49251 WordPress Maan Addons For Elementor plugin <= 1.0.1 - Local File Inclusion vulnerability — Maan Addons For Elementor 7.5 High2024-10-16
CVE-2024-9981 FormosaSoft ee-class - Local File Inclusion — ee-class 8.8 High2024-10-15
CVE-2024-47323 WordPress WP Timeline plugin <= 3.6.7 - Local File Inclusion vulnerability — WP Timeline – Vertical and Horizontal timeline plugin 8.1 High2024-10-05
CVE-2024-44023 WordPress ABCApp Creator plugin <= 1.1.2 - Local File Inclusion vulnerability — ABCApp Creator 8.1 High2024-10-05
CVE-2024-41925 Optigo Networks ONS-S8 Spectra Aggregation Switch PHP Remote File Inclusion — ONS-S8 Spectra Aggregation Switch 9.8 Critical2024-10-03
CVE-2024-44048 WordPress Product Carousel Slider & Grid Ultimate for WooCommerce plugin <= 1.9.10 - Authenticated Local File Inclusion vulnerability — Product Carousel Slider & Grid Ultimate for WooCommerce 6.5 Medium2024-09-23
CVE-2024-8252 Clean Login <= 1.14.5 - Authenticated (Contributor+) Local File Inclusion — Clean Login 8.8 High2024-08-30
CVE-2024-5762 Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability — Zen Cart 9.8AICriticalAI2024-08-21
CVE-2024-43261 WordPress Compute Links plugin <= 1.2.1 - Remote File Inclusion vulnerability — Compute Links 9.6 Critical2024-08-19
CVE-2024-4359 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.7.2 - Authenticated (Contributor+) Arbitrary File Read — Element Pack – Widgets, Templates & Addons for Elementor 6.5 Medium2024-08-09
CVE-2024-6589 LearnPress <= 4.2.6.8.2 - Authenticated (Contributor+) Local File Inclusion — LearnPress – WordPress LMS Plugin for Create and Sell Online Courses 8.8 High2024-07-25
CVE-2024-38735 WordPress Event post plugin <= 5.9.5 - Local File Inclusion vulnerability — Event post 7.5 High2024-07-12
CVE-2024-37520 WordPress ShopBuilder – Elementor WooCommerce Builder Addons plugin <= 2.1.12 - Local File Inclusion vulnerability — ShopBuilder – Elementor WooCommerce Builder Addons 6.5 Medium2024-07-09
CVE-2024-37410 WordPress PowerPack Lite for Beaver Builder plugin <= 1.3.0.3 - Local File Inclusion vulnerability — PowerPack Lite for Beaver Builder 4.9 Medium2024-07-09

Vulnerabilities classified as CWE-98 (PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)) represent 1082 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.