- Description
- Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in mojoomla WPAMS allows PHP Local File Inclusion.This issue affects WPAMS: from n/a through 44.0.
- Source
- audit@patchstack.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- audit@patchstack.com
- CWE-98
- Hype score
- Not currently trending
CVE-2025-39406 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in mojoomla WPAMS allows PHP Local File Inclusio… https://t.co/yWEbGH46Bq
@CVEnew
19 May 2025
250 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-39406: CRITICAL] Vulnerability in WordPress extension allows PHP Local File Inclusion, affecting versions up to 44.0. #CyberSecurity #WPAMS #PHPSecurity#cve,CVE-2025-39406,#cybersecurity https://t.co/ZDk6MCYL7H https://t.co/6aX60mb4ZY
@CveFindCom
19 May 2025
38 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes