Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
PeakShops allows hackers to access your files
CVE-2025-69322
Summary
The PeakShops software has a security weakness that allows hackers to access and potentially read sensitive files on your server. This could lead to unauthorized data exposure or other security risks. To fix this, update PeakShops to version 1.5.9 or later.
Original title
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in fuelthemes PeakShops peakshops allows PHP Local File Inclusion.This issue af...
Original description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in fuelthemes PeakShops peakshops allows PHP Local File Inclusion.This issue affects PeakShops: from n/a through < 1.5.9.
nvd CVSS3.1
8.1
Vulnerability type
CWE-98
Improper Control of Filename for Include
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026