CVE-2025-69081 | ThemeREX Group Hope Plugin up to 3.0.0 on WordPress filename control

Inserito da Angelo Barbosa | Gen 7, 2026 | CVE

A vulnerability was found in ThemeREX Group Hope Plugin up to 3.0.0 on WordPress. It has been declared as problematic. The affected element is an unknown function. Such manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is traded as CVE-2025-69081. The attack may be launched remotely. There is no exploit available.

CVE-2025-69081 | ThemeREX Group Hope Plugin up to 3.0.0 on WordPress filename control

Post correlati

CVE-2024-9868 | bdthemes Element Pack Elementor Addons Plugin up to 5.10.1 on WordPress Age Gate Widget url cross site scripting

CVE-2025-8931 | code-projects Medical Store Management System 1.0 ChangePassword.java newPassTxt sql injection

CVE-2024-6489 | Getwid Plugin up to 2.0.10 on WordPress Google API Key authorization

CVE-2023-48116 | SmarterTools SmarterMail prior 16.x Build 8747 Calendar Appointment cross site scripting