CVE-2025-64287

Name of the Vulnerable Software and Affected Versions Edge-Themes Alloggio - Hotel Booking versions through 1.8

Description The software contains a flaw related to improper control of filenames used in include/require statements, leading to a PHP Local File Inclusion issue. The vulnerability allows for the inclusion of local files.

Recommendations Versions prior to 1.8 should be updated. At the moment, there is no information about a newer version that contains a fix for this vulnerability.