CVE-2025-52812 – ApusWP Domnoo PHP Local File Inclusion Vulnerability

June 27, 2025

CVE ID : CVE-2025-52812

Published : June 27, 2025, 12:15 p.m. | 2 hours, 14 minutes ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in ApusWP Domnoo allows PHP Local File Inclusion. This issue affects Domnoo: from n/a through 1.49.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52814 – Ovatheme BRW PHP RFI Vulnerability

Next Article CVE-2025-52810 – TMRW-studio Katerio Magazine Path Traversal PHP Local File Inclusion Vulnerability

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

Forget YouTube’s ad blocker war — this Google AI Overviews clone might finally sell me on the $14/month Premium subscription

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

CVE-2025-52812 – ApusWP Domnoo PHP Local File Inclusion Vulnerability

CVE-2025-32897 – Apache Seata (incubating) Untrusted Data Deserialization Vulnerability

CVE-2025-6822 – Code-projects Inventory Management System SQL Injection Vulnerability

CVE-2025-5877 – Fengoffice XML External Entity Reference Vulnerability

Hewlett Packard Enterprise warns of critical StoreOnce auth bypass

CVE-2025-4067 – ScriptAndTools Online-Travling-System Remote File Inclusion Vulnerability

CVE-2025-4466 – iSourcecode Gym Management System SQL Injection Vulnerability

Google Spoofed in Sophisticated DKIM Replay Attack Exploiting Email Trust Mechanisms

Rethinking layout in Sketch with Stacks

CVE-2025-45542 – CloudClassroom-PHP-Project SQL Injection Vulnerability

CVE-2025-46717 – “Sudo-rs Path Traversal Information Disclosure”

CVE-2025-52812 – ApusWP Domnoo PHP Local File Inclusion Vulnerability

Related Posts