Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
SolverWp Portfolio Builder allows hackers to read local files
CVE-2025-69375
Summary
A security flaw in SolverWp Portfolio Builder allows hackers to access and view sensitive local files. This means that if a hacker can trick the software into reading a file they shouldn't be able to, they might be able to steal or expose confidential information. Update to the latest version of SolverWp Portfolio Builder to fix this issue.
Original title
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in SolverWp Portfolio Builder swp-portfolio allows PHP Local File Inclusion.Thi...
Original description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in SolverWp Portfolio Builder swp-portfolio allows PHP Local File Inclusion.This issue affects Portfolio Builder: from n/a through <= 1.2.5.
nvd CVSS3.1
8.1
Vulnerability type
CWE-98
Improper Control of Filename for Include
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026