GHSA-h7gc-j36r-4vhqHighCVSS 7.5

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...

Published
July 13, 2026
Last Modified
July 13, 2026

🔗 CVE IDs covered (1)

📋 Description

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes Flow flow allows PHP Local File Inclusion.This issue affects Flow: from n/a through <= 1.8.

🔗 References (3)