CVE-2025-49261 – ThemBay Diza PHP Remote File Inclusion Vulnerability

June 17, 2025

CVE ID : CVE-2025-49261

Published : June 17, 2025, 3:15 p.m. | 2 hours, 59 minutes ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in thembay Diza allows PHP Local File Inclusion. This issue affects Diza: from n/a through 1.3.8.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49330 – Bigin Zoho CRM Contact Form 7 Object Injection Vulnerability

Next Article CVE-2025-49415 – Fastw3b LLC FW Gallery Path Traversal Vulnerability

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Finally, a sleek gaming laptop I can take to the office (without sacrificing power)

These jobs face the highest risk of AI takeover, according to Microsoft

Apple’s tariff costs and iPhone sales are soaring – how long until device prices are too?

5 ways to successfully integrate AI agents into your workplace

Enhancing Laravel Queries with Reusable Scope Patterns

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

Everything We Know About Livewire 4

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

Sam Altman is afraid of OpenAI’s GPT-5 creation — “The Manhattan Project feels very fast, like there are no adults in the room”

9 new features that arrived on the Windows 11 Insider Program during the second half of July 2025

CVE-2025-49261 – ThemBay Diza PHP Remote File Inclusion Vulnerability

This month in security with Tony Anscombe – July 2025 edition

WordPress AI Engine Plugin Bug Allows Remote Code Execution – Update Now

CVE-2025-52832 – “WPO-HR NGG Smart Image Search SQL Injection”

Floating Mini Panel GNOME Extension Adds Auto Mode

CVE-2025-6089 – Astun Technology iShare Maps Open Redirect Vulnerability

CVE-2020-36844 – KnowBe4 Security Awareness Training Reflective Cross-Site Scripting

RUMOR: Xbox is working on Classics program with Xenia to revive original & 360 games

CVE-2025-33064 – Windows Routing and Remote Access Service (RRAS) Heap Buffer Overflow

You can track the top AI image generators via this new leaderboard – and vote for your favorite too

Best Home Interiors in Hyderabad – Top Designers & Affordable Packages

CVE-2025-49261 – ThemBay Diza PHP Remote File Inclusion Vulnerability

Related Posts