CVE-2025-0632 – Formulatrix Rock Maker Web Local File Inclusion Vulnerability

April 21, 2025

CVE ID : CVE-2025-0632

Published : April 21, 2025, 6:15 a.m. | 40 minutes ago

Description : Local File Inclusion (LFI) vulnerability in a Render function of Formulatrix Rock Maker Web (RMW) allows a remote attacker to obtain sensitive data via arbitrary code execution. A malicious actor could execute malicious scripts to automatically download configuration files in known locations to exfiltrate data including credentials, and with no rate limiting a malicious actor could enumerate the filesystem of the host machine and potentially lead to full host compromise.

This issue affects Rock Maker Web: from 3.2.1.1 and later

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCodeSOD: The Variable Toggle

Next Article CVE-2025-3821 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

Bethesda teases Oblivion Remastered, with a full announcement for the legendary Elder Scrolls title coming this week

Who knew a controller could make THIS much difference? I tested a new mobile controller for Xbox Cloud Gaming and was pleasantly surprised.

Clair Obscur: Expedition 33 PC system requirements and specs — Can you run this turn-based RPG adventure?

Community News: Latest PECL Releases (03.11.2025)

Community News: Latest PECL Releases (03.11.2025)

A Fan Portal for The Elder Scrolls IV: Oblivion Remake

Coveo Recognizes Perficient Colleagues as MVPs in 2025

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

Bethesda teases Oblivion Remastered, with a full announcement for the legendary Elder Scrolls title coming this week

Who knew a controller could make THIS much difference? I tested a new mobile controller for Xbox Cloud Gaming and was pleasantly surprised.

CVE-2025-0632 – Formulatrix Rock Maker Web Local File Inclusion Vulnerability

Hackers Can Now Exploit AI Models via PyTorch – Critical Bug Found

April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs

Googleâ€™s AI predicts weather using fraction of computing power

I tested Microsoft’s Surface Pro Copilot+ PC, and it beat the MacBook Air in 3 major ways

Distribution Release: Nitrux e3ba3c69

Selenium Webdriver fails to load browser through WebDriverManager

ERROR_ARBITRATION_UNHANDLED 723 (0x2D3) [Solved]

How AI Consulting Transforms Business Operations and Growth

GTA 7: Potential Insights on GTA 7 from Take-Two CEO’s Interview

Migrate from SAP ASE to SAP ASE on Amazon EC2 using AWS DMS and SAP ASE native methods

CVE-2025-0632 – Formulatrix Rock Maker Web Local File Inclusion Vulnerability

Related Posts