Redbasic Theme for Hubzilla: PHP Local File Inclusion Vulnerability via Schema Parameter

Redbasic Theme for Hubzilla: PHP Local File Inclusion Vulnerability via Schema Parameter

CVE-2022-27256 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A PHP Local File inclusion vulnerability in the Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter.

Learn more about our Web Application Penetration Testing UK.