CVE-2025-49256 – ThemBay Sapa PHP Remote File Inclusion Vulnerability

June 17, 2025

CVE ID : CVE-2025-49256

Published : June 17, 2025, 3:15 p.m. | 2 hours, 59 minutes ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in thembay Sapa allows PHP Local File Inclusion. This issue affects Sapa: from n/a through 1.1.14.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49415 – Fastw3b LLC FW Gallery Path Traversal Vulnerability

Next Article CVE-2025-49258 – ThemBay Maia PHP Remote File Inclusion Vulnerability

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Anthropic beats OpenAI as the top LLM provider for business – and it’s not even close

I bought Samsung’s Galaxy Watch Ultra 2025 – here’s why I have buyer’s remorse

I can admit when I’m wrong — this 75% wireless gaming keyboard is way better than I thought it would be

This is Microsoft’s canceled Windows-based Surface Duo — the dual-screen Windows Phone from 2018 that we never got

The details of TC39’s last meeting

The details of TC39’s last meeting

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

I can admit when I’m wrong — this 75% wireless gaming keyboard is way better than I thought it would be

I can admit when I’m wrong — this 75% wireless gaming keyboard is way better than I thought it would be

This is Microsoft’s canceled Windows-based Surface Duo — the dual-screen Windows Phone from 2018 that we never got

Looking for an Ubuntu Manual? Try This Book

CVE-2025-49256 – ThemBay Sapa PHP Remote File Inclusion Vulnerability

Why the tech industry needs to stand firm on preserving end-to-end encryption

Is your phone spying on you? | Unlocked 403 cybersecurity podcast (S2E5)

Urgent GitLab Security Alert: High-Severity Flaws Allow Account Takeover & Code Injection!

CVE-2025-20129 – Cisco Customer Collaboration Platform (CCP) HTTP Request Manipulation Vulnerability

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Blizzard announces release date for World of Warcraft: The War Within’s 3rd major content patch — a patch that will feature the largest, city-sized raid boss in MMORPG history

Former US Army Sergeant pleads guilty after amateurish attempt at selling secrets to China

The product design process

CVE-2025-53162 – Apache HTTP Server Denial of Service

System76 rinnova il laptop Serval WS con scheda grafica NVIDIA GeForce RTX 5070 Ti

CVE-2025-49256 – ThemBay Sapa PHP Remote File Inclusion Vulnerability

Related Posts