CVE-2024-48029

Name of the Vulnerable Software and Affected Versions SB Random Posts Widget versions 1.0 and earlier

Description The issue is related to Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability, in Hung Trang Si SB Random Posts Widget. This allows PHP Local File Inclusion.

Recommendations For SB Random Posts Widget version 1.0 and earlier, update to a version that fixes the 'PHP Remote File Inclusion' vulnerability, if available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.