cleantalk
Vulnerabilities and Security Researches

WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page, CVE-2025-53281

CVE, Research URL

CVE-2025-53281

Home page URL

Security reports for WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page

Application

WPB Product Categories Slider for WooCommerce – Display Categories Slider on Any Page

Published on
Jun 27, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WPBean WPB Category Slider for WooCommerce allows PHP Local File Inclusion. This issue affects WPB Category Slider for WooCommerce: from n/a through 1.71.
Affected versions
Min -, max 1.71.
Status
vulnerable
Previous vulnerability researches
Flexo Counter (CVE-2025-50052) , Jul 01, 2025
New vulnerability
Drive Folder Embedder (CVE-2025-6546) , Jul 04, 2025
WP Roadmap – Product Feedback Board (CVE-2025-52822) , Jul 04, 2025
WP Wall (CVE-2025-28968) , Jul 04, 2025
Contact Form – 7 : Hide Success Message (CVE-2025-53304) , Jul 04, 2025
Download Manager and Payment Form WordPress Plugin – WP SmartPay (CVE-2025-3848) , Jul 04, 2025