CVE-2025-46230PHP Remote File Inclusion in Popup Builder

CWE-98PHP Remote File Inclusion3 documents3 sources
Severity
N/A
No vector
EPSS
0.3%
top 44.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Ghozylab Popup Builder
Timeline
PublishedApr 24

Description

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in GhozyLab Popup Builder easy-notify-lite allows PHP Local File Inclusion.This issue affects Popup Builder: from n/a through <= 1.1.35.

Affected Packages1 packages

CVEListV5ghozylab/popup_builder1.1.35

🔴Vulnerability Details

2
GHSA
GHSA-42m3-f876-5wvj: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in GhozyLab Popup Builder allows2025-04-24
CVEList
WordPress Popup Builder plugin <= 1.1.35 - Local File Inclusion Vulnerability2025-04-24
CVE-2025-46230 — PHP Remote File Inclusion | cvebase