CVE-2025-39406

Name of the Vulnerable Software and Affected Versions: WPAMS versions prior to 44.0

Description: The issue affects the mojoomla WPAMS, allowing PHP Local File Inclusion due to improper control of filename for include/require statement in PHP program, also known as 'PHP Remote File Inclusion'.

Recommendations: For versions prior to 44.0, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.