cleantalk
Vulnerabilities and Security Researches

miniOrange Discord Integration, CVE-2025-47672

CVE, Research URL

CVE-2025-47672

Home page URL

Security reports for miniOrange Discord Integration

Application

miniOrange Discord Integration

Published on
May 23, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in miniOrange miniOrange Discord Integration allows PHP Local File Inclusion. This issue affects miniOrange Discord Integration: from n/a through 2.2.2.
Affected versions
Min -, max 2.2.2.
Status
vulnerable
Previous vulnerability researches
RSVPMaker Volunteer Roles (CVE-2025-23531) , Jan 29, 2025
New vulnerability
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-4223) , May 25, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2024-13427) , May 25, 2025
miniOrange Discord Integration (CVE-2025-47672) , May 25, 2025
4stats (CVE-2025-3869) , May 24, 2025
Verge3D Publishing and E-Commerce (CVE-2025-48241) , May 24, 2025