Vulnerabilities and security researches forinclude-me include-me

Jun 06, 2024

CVE, Research URL: CVE-2021-24453
Home page URL: Security reports for Include Me
Application: Include Me
Date: Jul 19, 2021
Research Description: The Include Me WordPress plugin through 1.2.1 is vulnerable to path traversal / local file inclusion, which can lead to Remote Code Execution (RCE) of the system due to log poisoning and therefore potentially a full compromise of the underlying structure
Affected versions: Min -, max -.
Status: vulnerable

Sep 11, 2025

CVE, Research URL: CVE-2025-58983
Home page URL: Security reports for Include Me
Application: Include Me
Date: Sep 09, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Stefano Lissa Include Me allows Stored XSS. This issue affects Include Me: from n/a through 1.3.2.
Affected versions: Min -, max -.
Status: vulnerable