CVE-2025-49258 – ThemBay Maia PHP Remote File Inclusion Vulnerability

June 17, 2025

CVE ID : CVE-2025-49258

Published : June 17, 2025, 3:15 p.m. | 2 hours, 59 minutes ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in thembay Maia allows PHP Local File Inclusion. This issue affects Maia: from n/a through 1.1.15.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49256 – ThemBay Sapa PHP Remote File Inclusion Vulnerability

Next Article CVE-2025-49255 – ThemBay Ruza PHP Remote File Inclusion Vulnerability

Highlights

CVE-2025-53030 – Oracle VirtualBox Core Privilege Escalation Vulnerability

July 16, 2025

CVE ID : CVE-2025-53030

Published : July 15, 2025, 8:15 p.m. | 6 hours, 37 minutes ago

Description : Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is 7.1.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. CVSS 3.1 Base Score 6.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N).

Severity: 6.0 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Anthropic beats OpenAI as the top LLM provider for business – and it’s not even close

I bought Samsung’s Galaxy Watch Ultra 2025 – here’s why I have buyer’s remorse

I can admit when I’m wrong — this 75% wireless gaming keyboard is way better than I thought it would be

This is Microsoft’s canceled Windows-based Surface Duo — the dual-screen Windows Phone from 2018 that we never got

The details of TC39’s last meeting

The details of TC39’s last meeting

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

I can admit when I’m wrong — this 75% wireless gaming keyboard is way better than I thought it would be

I can admit when I’m wrong — this 75% wireless gaming keyboard is way better than I thought it would be

This is Microsoft’s canceled Windows-based Surface Duo — the dual-screen Windows Phone from 2018 that we never got

Looking for an Ubuntu Manual? Try This Book

CVE-2025-49258 – ThemBay Maia PHP Remote File Inclusion Vulnerability

Why the tech industry needs to stand firm on preserving end-to-end encryption

Is your phone spying on you? | Unlocked 403 cybersecurity podcast (S2E5)

CVE-2025-43971 – GoBGP Zero-Value Software Version Len Panic

CVE-2025-4829 – TOTOLINK A702R/A3002R/A3002RU HTTP POST Request Handler Buffer Overflow Vulnerability

Forget about Steam in the Xbox PC app — I want Game Pass in the app I actually use

CVE-2025-34130 – LILIN Digital Video Recorder (DVR) Unauthenticated Arbitrary File Read Vulnerability

CVE-2025-53030 – Oracle VirtualBox Core Privilege Escalation Vulnerability

5 ways you can plug the widening AI skills gap at your business

CVE-2025-20003 – Intel Graphics Driver Link Following Privilege Escalation Vulnerability

5 habit trackers on Android that can reveal your patterns – and motivate you to change

CVE-2025-49258 – ThemBay Maia PHP Remote File Inclusion Vulnerability

Related Posts