CVE-2025-32668

Name of the Vulnerable Software and Affected Versions: Rameez Iqbal Real Estate Manager versions n/a through 7.3

Description: The issue is related to an improper control of filename for include/require statement in PHP programs, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusion.

Recommendations: For versions n/a through 7.3, consider restricting access to vulnerable include/require statements to minimize the risk of exploitation. As a temporary workaround, avoid using the include and require functions with unvalidated input until a patch is available. Restrict access to sensitive files and directories to prevent potential local file inclusion attacks.