CVE-2025-39470 – ThimPress Ivy School PHP Local File Inclusion Vulnerability

April 21, 2025

CVE ID : CVE-2025-39470

Published : April 18, 2025, 5:15 a.m. | 3 days, 20 hours ago

Description : Path Traversal: ‘…/…//’ vulnerability in ThimPress Ivy School allows PHP Local File Inclusion.This issue affects Ivy School: from n/a through 1.6.0.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3846 – Markparticle WebServer SQL Injection Vulnerability

Next Article CVE-2025-21204: SYSTEM-Level Privilege Escalation in Windows Update Stack Exposed, PoC Released

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

I finally gave NotebookLM my full attention – and it really is a total game changer

Google Chrome for iOS now lets you switch between personal and work accounts

How the Trump administration changed AI: A timeline

Download your photos before AT&T shuts down its cloud storage service permanently

Laravel Live Denmark

Laravel Live Denmark

The July 2025 Laravel Worldwide Meetup is Today

Livewire Security Vulnerability

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Halo and Half-Life combine in wild new mod, bringing two of my favorite games together in one — here’s how to play, and how it works

Surprise! The iconic Roblox ‘oof’ sound is back — the beloved meme makes “a comeback so good it hurts” after three years of licensing issues

CVE-2025-39470 – ThimPress Ivy School PHP Local File Inclusion Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

CVE-2025-43701 – Salesforce OmniStudio FlexCards Information Disclosure Vulnerability

CVE-2025-6331 – PHPGurukul Directory Management System SQL Injection

WWE 2K25 gets the WrestleMania 41 arena and its second DLC — but where’s the missing celebrity from the first one?

CVE-2025-3746 – WordPress One Tap Signin Plugin Authentication Bypass

Novel AI model inspired by neural dynamics from the brain

CVE-2025-6436 – “Mozilla Firefox Memory Corruption Vulnerability”

CVE-2025-4455 – Patch My PC Home Updater DLL Search Path Manipulation Vulnerability

Negative Scenarios in Testing: Proven Ways to Bulletproof Your Software

CVE-2025-39470 – ThimPress Ivy School PHP Local File Inclusion Vulnerability

Related Posts