CVE-2025-47670 – miniOrange WordPress Social Login and Register PHP Remote File Inclusion Vulnerability

May 27, 2025

CVE ID : CVE-2025-47670

Published : May 23, 2025, 1:15 p.m. | 4 days ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in miniOrange WordPress Social Login and Register allows PHP Local File Inclusion. This issue affects WordPress Social Login and Register: from n/a through 7.6.10.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-41652 – Cisco Router Authentication Bypass Vulnerability

Next Article CVE-2025-47663 – Mojoomla Hospital Management System Unrestricted File Upload Vulnerability

Twilio’s Event Triggered Journeys, OutSystem’s Agent Workbench, and more – Daily News Digest

Harness Infrastructure as Code Management expands with features that facilitate better reusability

Akka introduces platform for distributed agentic AI

Design Patterns For AI Interfaces

I tested Dyson’s pricey flagship headphones and they’re better than I expected

60% of managers use AI to make decisions now, including whom to promote and fire – does yours?

4 ways Google Wallet can make your life easier (and more organized)

How to maximize your Windows 11 PC’s battery life in 9 easy steps

The details of TC39’s last meeting

The details of TC39’s last meeting

How Agentic AI is Reshaping Marketing and CX Operations

We’re Moving! NodeSource Distributions Now Have a New Home – With Extended Support

Blender 4.5 LTS Released with ‘Full Vulkan Support’

Blender 4.5 LTS Released with ‘Full Vulkan Support’

nsupdate.info – software used to implement a free dynamic DNS service

Windows 11’s handheld gaming UI references spotted ahead of Xbox Ally

CVE-2025-47670 – miniOrange WordPress Social Login and Register PHP Remote File Inclusion Vulnerability

Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CVE-2025-6525 – “70mai 1S Configuration Handler Improper Authorization Vulnerability”

CVE-2025-39596 – Quentn.com GmbH Quentn WP Weak Authentication Privilege Escalation

CVE-2025-6488 – WordPress isMobile Stored Cross-Site Scripting Vulnerability

These 6 products helped me cut ties with cable – and save $1,200 a year

A Coding Guide to Build an Agentic AI‑Powered Asynchronous Ticketing Assistant Using PydanticAI Agents, Pydantic v2, and SQLite Database

CVE-2025-49868 – Autonami Open Redirect Phishing

Choosing the right font for effective communication

PC & Xbox Series X|S Games Teased at Sony’s June 2025 State of Play [Release Date & Trailers]

CVE-2025-47670 – miniOrange WordPress Social Login and Register PHP Remote File Inclusion Vulnerability

Related Posts