CVE-2025-22656

Published Feb 18, 2025

Last updated 7 days ago

Overview

Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Oscar Alvarez Cookie Monster cookie-monster allows PHP Local File Inclusion.This issue affects Cookie Monster: from n/a through <= 1.2.2.
Source
audit@patchstack.com
NVD status
Deferred

Weaknesses

audit@patchstack.com
CWE-98

Social media

Hype score
Not currently trending

  1. CVE-2025-22656 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Oscar Alvarez Cookie Monster allows PHP Local… https://t.co/90Ll2lmpHh

    @CVEnew

    18 Feb 2025

    218 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.