Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.5
VidoRev allows hackers to access local files
CVE-2025-69373
Summary
A security weakness in VidoRev, a PHP-based video review software, allows hackers to access and potentially read sensitive local files on the server. This creates a risk of data exposure and unauthorized access. To protect your system, update to the latest version of VidoRev, version 3.0.0 or later.
Original title
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in beeteam368 VidoRev vidorev allows PHP Local File Inclusion.This issue affect...
Original description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in beeteam368 VidoRev vidorev allows PHP Local File Inclusion.This issue affects VidoRev: from n/a through <= 2.9.9.9.9.9.7.
nvd CVSS3.1
7.5
Vulnerability type
CWE-98
Improper Control of Filename for Include
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026