CVE-2025-23949 – Mihajlovic Nenad Improved Sale Badges PHP Remote File Inclusion Vulnerability

CVE ID : CVE-2025-23949

Published : Jan. 22, 2025, 3:15 p.m. | 1 hour ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in Mihajlovic Nenad Improved Sale Badges – Free Version allows PHP Local File Inclusion. This issue affects Improved Sale Badges – Free Version: from n/a through 1.0.1.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-23949 – Mihajlovic Nenad Improved Sale Badges PHP Remote File Inclusion Vulnerability