Loftocean Cozystay

3 CVEs affecting Loftocean Cozystay. Latest disclosed: 2026-02-20. Critical: 1, High: 2.

Top CVEs affecting Loftocean Cozystay
CVESeverityScorePublishedSummary
CVE-2025-49507Critical9.82025-06-10Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay cozystay allows Object Injection.This issue affects CozyStay: from n/a through < 1.7.1.
CVE-2025-67988High8.12026-02-20Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in LoftOcean CozyStay cozystay allows PHP…
CVE-2025-49508High8.12025-06-17Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in LoftOcean CozyStay cozystay allows PHP…