CVE-2025-48292 – GoodLayers Tourmaster PHP Remote File Inclusion Vulnerability

CVE ID : CVE-2025-48292

Published : May 23, 2025, 1:15 p.m. | 2 hours, 3 minutes ago

Description : Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP Remote File Inclusion’) vulnerability in GoodLayers Tourmaster allows PHP Local File Inclusion. This issue affects Tourmaster: from n/a through 5.3.8.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…