{"id":"CVE-2025-39466","details":"Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Mikado-Themes Dør dor allows PHP Local File Inclusion.This issue affects Dør: from n/a through \u003c= 2.4.","modified":"2026-03-13T01:17:09.239845Z","published":"2025-11-06T16:15:50.903Z","references":[{"type":"ADVISORY","url":"https://patchstack.com/database/Wordpress/Theme/dor/vulnerability/wordpress-doer-2-4-local-file-inclusion-vulnerability?_s_id=cve"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"2.4.1"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-39466.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}