Vulnerabilities and security researches fornational-weather-service-alerts national-weather-service-alerts

Jul 02, 2025

CVE, Research URL: CVE-2025-52809
Home page URL: Security reports for National Weather Service Alerts
Application: National Weather Service Alerts
Date: Jun 27, 2025
Research Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in John Russell National Weather Service Alerts allows PHP Local File Inclusion. This issue affects National Weather Service Alerts: from n/a through 1.3.5.
Affected versions: Min -, max -.
Status: vulnerable