CVE-2025-32304 – WordPress WPCHURCH plugin

CVE ID : CVE-2025-32304

Published : Jan. 6, 2026, 5:34 p.m. | 53 minutes ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in Mojoomla WPCHURCH allows PHP Local File Inclusion.This issue affects WPCHURCH: from n/a through 2.7.0.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…