VYPR

Include Me

by WordPress

Source repositories

CVEs (2)

  • CVE-2021-24453HigJul 19, 2021
    risk 0.58cvss 8.8epss 0.05

    The Include Me WordPress plugin through 1.2.1 is vulnerable to path traversal / local file inclusion, which can lead to Remote Code Execution (RCE) of the system due to log poisoning and therefore potentially a full compromise of the underlying structure

  • CVE-2025-58983MedSep 9, 2025
    risk 0.38cvss 5.9epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Stefano Lissa Include Me include-me allows Stored XSS.This issue affects Include Me: from n/a through <= 1.3.2.