CVE-2025-52812 – ApusWP Domnoo PHP Local File Inclusion Vulnerability

June 27, 2025

CVE ID : CVE-2025-52812

Published : June 27, 2025, 12:15 p.m. | 2 hours, 14 minutes ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in ApusWP Domnoo allows PHP Local File Inclusion. This issue affects Domnoo: from n/a through 1.49.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52814 – Ovatheme BRW PHP RFI Vulnerability

Next Article CVE-2025-52810 – TMRW-studio Katerio Magazine Path Traversal PHP Local File Inclusion Vulnerability

Highlights

CVE-2025-48375 – Schule Open-Source School Management System OTP Email Flooding Vulnerability

May 23, 2025

CVE ID : CVE-2025-48375

Published : May 23, 2025, 4:15 p.m. | 2 hours, 37 minutes ago

Description : Schule is open-source school management system software. Prior to version 1.0.1, the file forgot_password.php (or equivalent endpoint responsible for email-based OTP generation) lacks proper rate limiting controls, allowing attackers to abuse the OTP request functionality. This vulnerability can be exploited to send an excessive number of OTP emails, leading to potential denial-of-service (DoS) conditions or facilitating user harassment through email flooding. Version 1.0.1 fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Benefits of Hiring a React.js Development Company (2025–2026 Edition)

From Line To Layout: How Past Experiences Shape Your Design Career

Hire React.js Developers in the US: How to Choose the Right Team for Your Needs

Google’s coding agent Jules gets critique functionality

The best smartphones without AI features in 2025: Expert tested and recommended

GPT-5 was supposed to simplify ChatGPT but now it has 4 new modes – here’s why

Gemini just got two of ChatGPT’s best features – and they’re free

I found the easiest way to send files between my Android phone and desktop – and it’s free

Laravel Boost is released

Laravel Boost is released

Frontend Standards for Optimizely Configured Commerce: Clean & Scalable Web Best Practices

Live Agent Escalation in Copilot Studio Using D365 Omnichannel – Architecture and Use Case

OpenAI’s Sam Altman: GPT-5 fails to meet AGI standards amid Microsoft’s fading partnership — “it’s still missing something”

OpenAI’s Sam Altman: GPT-5 fails to meet AGI standards amid Microsoft’s fading partnership — “it’s still missing something”

You Think You Need a Monster PC to Run Local AI, Don’t You? — My Seven-Year-Old Mid-range Laptop Says Otherwise

8 Registry Tweaks that will Make File Explorer Faster and Easier to Use on Windows 11

CVE-2025-52812 – ApusWP Domnoo PHP Local File Inclusion Vulnerability

How the always-on generation can level up its cybersecurity game

Supply-chain dependencies: Check your resilience blind spot

The Hidden Trade-Offs of Scriptless Automation Are You Sacrificing Strategy for Speed?

PSA: Diablo 4 new battle pass is broken — do not buy the Reliquary

How to Create Models in Your Django Project

Top 10 new Windows 11 features and changes unveiled via the Insider Program in June 2025 — and where to find them

CVE-2025-48375 – Schule Open-Source School Management System OTP Email Flooding Vulnerability

CVE-2025-26074 – Orkes Conductor Java Deserialization Vulnerability

Anthropic launches Claude for Education, an AI to help students think critically

The Alters PC review: I’m rethinking my own life paths after falling in love with a sci-fi game

CVE-2025-52812 – ApusWP Domnoo PHP Local File Inclusion Vulnerability

Related Posts