Security Advisory
CVE-2025-47531
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Improper Control of Filename for Include/Require Statement in PHP Program (PHP Remote File Inclusion) vulnerability in Xylus Themes XT Event Widget for Social Events xt-facebook-events allows PHP Local File Inclusion.This issue affects XT Event Widget for Social Events: from n/a through <= 1.1.7.