CVE-2025-64195

Q: What is CVE-2025-64195?

This vulnerability affects the product by the vendor (CWE: unspecified).

Q: How can I mitigate CVE-2025-64195?

Prioritize patching and consider temporary workarounds documented by the vendor.

CVSS 7.6 High

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
Published: 1761729338
Last modified: 1761747360

CVE-2025-64195 — Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThimPress Eduma eduma allows PHP Local File Inclusion.This issue affects Eduma: from n/a through <= 5.7.6. [Severity (CVSS) 7.6]

Related CVE by CWE

No related CWE found.

Top CVE for Vendor

No vendor taxonomy on this entry.

Recently Exploited Similar Vulnerabilities

No recent KEV-listed items for this vendor/product.

Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in ThimPress Eduma eduma allows PHP Local File Inclusion.This issue affects Eduma: from n/a through <= 5.7.6.

🧠 Explainer: What this vulnerability means

Summary: This vulnerability affects the product by the vendor (CWE: unspecified).

Impact: Attackers could gain unauthorized access, execute code, or disrupt services.

Mitigation: Prioritize patching and consider temporary workarounds documented by the vendor.

No vendor/product data yet.

No explicit mitigation/advisory links found in references.

Related CVE by CWE

Risk snapshot

Related CVE by CWE

Top CVE for Vendor

Recently Exploited Similar Vulnerabilities

🧠 Explainer: What this vulnerability means