Vulnerability Database

314,432

Total vulnerabilities in the database

CVE-2025-68537

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Zota zota allows PHP Local File Inclusion.This issue affects Zota: from n/a through <= 1.3.14.

  • Published: Dec 24, 2025
  • Updated: Dec 25, 2025
  • CVE: CVE-2025-68537
  • Severity: Critical
  • Exploit:

CVSS v3:

  • Severity: Critical
  • Score: 9.8
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

No affected software listed.