Untriaged
Permalink
CVE-2025-32286
8.1 HIGH
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): HIGH
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
WordPress Butcher <= 2.40 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ApusTheme Butcher allows PHP Local File Inclusion. This issue affects Butcher: from n/a through 2.40.
References
Affected products
butcher
- =<2.40
Matching in nixpkgs
pkgs.haskellPackages.butcher
Chops a command or program invocation into digestable pieces
-
nixos-unstable -
- nixpkgs-unstable 1.3.3.2