Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Fantasticplugins Subscribe
Filtered by product Sumo Reward Points
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2025-32925 1 Fantasticplugins 1 Sumo Reward Points 2026-04-01 N/A 9.8 CRITICAL
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FantasticPlugins SUMO Reward Points rewardsystem allows PHP Local File Inclusion.This issue affects SUMO Reward Points: from n/a through <= 30.7.0.