cleantalk
Vulnerabilities and Security Researches

WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page, CVE-2025-53281

CVE, Research URL

CVE-2025-53281

Home page URL

Security reports for WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page

Application

WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page

Published on
Jun 27, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WPBean WPB Category Slider for WooCommerce allows PHP Local File Inclusion. This issue affects WPB Category Slider for WooCommerce: from n/a through 1.71.
Affected versions
Min -, max 1.71.
Status
vulnerable
Previous vulnerability researches
Advanced Flamingo (CVE-2023-52226) , Jun 07, 2024
Flamingo , Apr 16, 2025
Flamingo (022a9997dfc335fe7d818f90b085eb691dd3ba3c) , Jun 07, 2024
New vulnerability
WP Wall (CVE-2025-28968) , Jul 04, 2025
Contact Form – 7 : Hide Success Message (CVE-2025-53304) , Jul 04, 2025
Download Manager and Payment Form WordPress Plugin – WP SmartPay (CVE-2025-3848) , Jul 04, 2025
Buying Buddy IDX CRM (CVE-2025-50037) , Jul 04, 2025
PDF Flipbook, 3D Flipbook – DearFlip (CVE-2025-5314) , Jul 04, 2025