cleantalk
Vulnerabilities and Security Researches

List category posts, CVE-2025-47636

CVE, Research URL

CVE-2025-47636

Home page URL

Security reports for List category posts

Application

List category posts

Published on
May 07, 2025
Research Description
Path Traversal: '.../...//' vulnerability in Fernando Briano List category posts list-category-posts allows PHP Local File Inclusion.This issue affects List category posts: from n/a through <= 0.91.0.
Affected versions
max 0.92.0.
Status
vulnerable
Previous vulnerability researches
Mail Control – Email Customizer, SMTP Deliverability, logging, open and click Tracking (CVE-2023-33999) , Jun 14, 2026
Mail Control – Email Customizer, SMTP Deliverability, logging, open and click Tracking (CVE-2023-3158) , Jun 10, 2024
Woo Email Control (1e1042a4cdce747a046e3434be750e253f9df784) , Jun 07, 2024
New vulnerability
Premmerce Brands for WooCommerce (CVE-2023-33999) , Jun 14, 2026
EventPrime – Events Calendar, Bookings and Tickets (CVE-2025-63007) , Jun 14, 2026
EventPrime – Events Calendar, Bookings and Tickets (CVE-2026-24378) , Jun 14, 2026
EventPrime – Events Calendar, Bookings and Tickets (CVE-2025-69358) , Jun 14, 2026
EventPrime – Events Calendar, Bookings and Tickets (CVE-2025-63006) , Jun 14, 2026