cleantalk
Vulnerabilities and Security Researches

Material Dashboard, CVE-2025-31014

CVE, Research URL

CVE-2025-31014

Home page URL

Security reports for Material Dashboard

Application

Material Dashboard

Published on
Apr 11, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ho3einie Material Dashboard allows PHP Local File Inclusion. This issue affects Material Dashboard: from n/a through 1.4.5.
Affected versions
Min -, max 1.4.6.
Status
vulnerable
Previous vulnerability researches
User registration & user profile – UserPlus (CVE-2023-0824) , Jun 07, 2024
User registration & user profile – UserPlus (CVE-2024-52442) , Nov 22, 2024
User registration & user profile – UserPlus (CVE-2024-9519) , Oct 11, 2024
User registration & user profile – UserPlus (CVE-2024-9518) , Oct 11, 2024
User registration & user profile – UserPlus (CVE-2024-9520) , Oct 11, 2024
New vulnerability
Wireless Butler (CVE-2025-26997) , Apr 15, 2025
WooCommerce Loyal Customers (CVE-2025-32544) , Apr 15, 2025
WP Delete User Accounts (CVE-2025-26906) , Apr 15, 2025
Coming Soon, Maintenance Mode & Under Construction Page Builder by Site Mode (CVE-2025-26894) , Apr 15, 2025
Real Testimonials (CVE-2025-22269) , Apr 15, 2025