Xylusthemes: >> Xt Event Widget For Social Events >> 1.1.3 Security Vulnerabilities
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Xylus Themes XT Event Widget for Social Events xt-facebook-events allows PHP Local File Inclusion.This issue affects XT Event Widget for Social Events: from n/a through <= 1.1.7.
CVSS Score
8.8
EPSS Score
0.006
Published
2025-05-07