2025-05-07 14:20:11
Patchstack
PUBLISHED
Improper Control of Filename for Include/Require Statement in PHP Program (PHP Remote File Inclusion) vulnerability in Xylus Themes XT Event Widget for Social Events xt-facebook-events allows PHP Local File Inclusion.This issue affects XT Event Widget for Social Events: from n/a through <= 1.1.7.