cleantalk
Vulnerabilities and Security Researches

Flexi – Guest Submit, CVE-2025-32589

CVE, Research URL

CVE-2025-32589

Home page URL

Security reports for Flexi – Guest Submit

Application

Flexi – Guest Submit

Published on
Apr 11, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in odude Flexi – Guest Submit allows PHP Local File Inclusion. This issue affects Flexi – Guest Submit: from n/a through 4.28.
Affected versions
Min -, max 4.28.
Status
vulnerable
Previous vulnerability researches
ContentBot AI Writer (ChatGPT, GPT3, GPT4) (CVE-2025-31818) , Apr 04, 2025
New vulnerability
Nepali Date Converter (CVE-2025-26950) , Apr 15, 2025
DSGVO Youtube (CVE-2025-26982) , Apr 15, 2025
WP Easy Poll (CVE-2025-32562) , Apr 15, 2025
License Manager for WooCommerce (CVE-2025-32522) , Apr 14, 2025
License For Envato (CVE-2025-32566) , Apr 14, 2025