CWE-98: CWE-98

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This CVE describes a PHP Local File Inclusion vulnerability in the DynamicWebLab Team Manager WordPress plugin. Attackers can include arbitrary local ...

This vulnerability allows attackers to include local files on the server through improper input validation in WP Travel Engine WordPress plugin. Attac...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP's include/require statements. It aff...

This vulnerability allows attackers to include local files on the server through improper input validation in the WPCafe WordPress plugin. Attackers c...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include local files on the server through improper input validation in the WishSuite WordPress plugin. Attacker...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include local files on the server through PHP's include/require statements in the Subscribe to Download Lite Wo...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP's include/require statements. It aff...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include local files on the server through the Affiliate Coupons WordPress plugin. Attackers can potentially rea...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This CVE describes a PHP Local File Inclusion vulnerability in QuantumCloud ChatBot WordPress plugin. Attackers can include arbitrary local files thro...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows authenticated WordPress users with Contributor-level access or higher to perform Local File Inclusion attacks via the 'team-...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP's include/require statements. It aff...

This vulnerability allows authenticated WordPress users with Contributor-level access or higher to include and execute arbitrary PHP files on the serv...

The BMLT Meeting Map WordPress plugin has a Local File Inclusion vulnerability that allows authenticated attackers with Contributor-level access or hi...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include arbitrary local files via PHP's include/require statements in the Private Messages for UserPro WordPres...

This CVE describes a PHP Local File Inclusion vulnerability in the FAT Event Lite WordPress plugin, allowing authenticated attackers to include arbitr...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include arbitrary local files via PHP's include/require statements in the EazyDocs WordPress plugin. Attackers ...

This CVE describes a PHP Local File Inclusion vulnerability in the CodegearThemes Designer WordPress plugin, allowing attackers to include and execute...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include and execute arbitrary PHP files from remote servers in the Office Locator WordPress plugin. It affects ...

This vulnerability allows attackers to include local PHP files through improper filename control in the Absolute Addons for Elementor WordPress plugin...

This vulnerability allows attackers to include arbitrary local files through improper filename control in PHP's include/require statements in the Clea...

This vulnerability allows attackers to include arbitrary local files in WordPress sites using the Qode Essential Addons plugin. Attackers can potentia...

This vulnerability allows attackers to include arbitrary local files in the NewsCard WordPress theme, potentially leading to remote code execution. It...

This vulnerability allows attackers to include and execute arbitrary PHP files on WordPress sites using the Mags theme. Attackers can achieve remote c...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This vulnerability allows attackers to include local PHP files through improper filename control in the Maan Addons For Elementor WordPress plugin. At...

This vulnerability allows attackers to include local files on the server through the SB Random Posts Widget WordPress plugin. Attackers can potentiall...

A local file inclusion vulnerability in Trend Micro Apex Central widgets could allow remote attackers to execute arbitrary code on affected systems. T...

This vulnerability allows attackers to include and execute arbitrary PHP files on servers running the Revolution WordPress theme. Attackers can achiev...

This CVE describes a PHP Local File Inclusion vulnerability in the WoodMart WordPress theme. Attackers can include arbitrary local files through impro...

This vulnerability allows attackers to include local PHP files through improper filename control in the JetReviews WordPress plugin. It affects all Wo...

This vulnerability allows authenticated attackers to include local files and upload malicious JSP files to achieve remote code execution on Zucchetti ...

The WordPress Sogrid plugin (versions up to 1.5.2) contains a Local File Inclusion vulnerability via the 'tab' parameter. This allows authenticated at...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

The WooCommerce Blocks - Woolook WordPress plugin contains a Local File Inclusion vulnerability that allows authenticated administrators to include an...

This CVE describes a local file inclusion vulnerability in Vedo Suite version 2024.17 that allows authenticated remote attackers to read arbitrary fil...

A Local File Inclusion vulnerability in Vasco v3.14 and earlier allows remote attackers to read sensitive files on the server through the help menu fu...

This vulnerability allows attackers to include local files on the server through improper filename control in PHP include/require statements. It affec...

This CVE describes a PHP Local File Inclusion vulnerability in the Post Grid Master WordPress plugin. Attackers can exploit improper filename control ...