License For Envato, CVE-2025-39399
- CVE, Research URL
- Home page URL
- Application
- Published on
- Apr 24, 2025
- Research Description
- Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Ashraful Sarkar Naiem License For Envato allows PHP Local File Inclusion. This issue affects License For Envato: from n/a through 1.0.0.
- Affected versions
-
Min -, max 1.0.0.
- Status
-
vulnerable
| Previous vulnerability researches |
|---|
| MainWP Child Reports (CVE-2024-33680) , Jun 06, 2024 |
| MainWP Child Reports (CVE-2021-24754) , Jun 06, 2024 |
| MainWP Child Reports (CVE-2024-7492) , Aug 09, 2024 |