CVE-2026-25464 | TieLabs Jannah Plugin up to 7.6.3 on WordPress filename control

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability categorized as critical has been discovered in TieLabs Jannah Plugin up to 7.6.3 on WordPress. This issue affects some unknown processing. Executing a manipulation can lead to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability appears as CVE-2026-25464. The attack may be performed from remote. There is no available exploit.

CVE-2026-25464 | TieLabs Jannah Plugin up to 7.6.3 on WordPress filename control

Post correlati

CVE-2025-68374 | Linux Kernel up to 6.12.62/6.17.12/6.18.1 md_wakeup_thread use after free

CVE-2024-53779 | Max Engel Yahoo WebPlayer Plugin up to 2.0.6 on WordPress cross-site request forgery

CVE-2024-3637 | Responsive Contact Form Builder & Lead Generation Plugin Setting cross site scripting

CVE-2025-62459 | Microsoft 365 Defender Portal cross site scripting