cleantalk
Vulnerabilities and Security Researches

WP Shopify, CVE-2025-30999

CVE, Research URL

CVE-2025-30999

Home page URL

Security reports for WP Shopify

Application

WP Shopify

Published on
Jun 06, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Fahad Mahmood WP Shopify allows PHP Local File Inclusion. This issue affects WP Shopify: from n/a through 1.5.3.
Affected versions
Min -, max 1.5.3.
Status
vulnerable
Previous vulnerability researches
WP Shopify (CVE-2025-30999) , Jun 14, 2025
WP Shopify (CVE-2025-7808) , Aug 27, 2025
New vulnerability
Add Code To Head (CVE-2025-48314) , Aug 29, 2025
130+ Widgets | Best Addons For Elementor – FREE (CVE-2025-58195) , Aug 29, 2025
WP Bulk Delete (CVE-2025-58192) , Aug 29, 2025
Responsive Mobile-Friendly Tooltip (CVE-2025-48316) , Aug 29, 2025
Savyour Affiliate Partner (CVE-2025-48306) , Aug 29, 2025