CVE-2025-31098

Name of the Vulnerable Software and Affected Versions DeBounce Email Validator versions n/a through 5.7

Description The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion'. This allows PHP Local File Inclusion.

Recommendations For DeBounce Email Validator versions n/a through 5.7, consider disabling the vulnerable include/require statement functionality until a patch is available. Restrict access to sensitive files to minimize the risk of exploitation. Avoid using user-supplied input in the filename variable for include/require statements until the issue is resolved.