CVE-2025-49366
CVE-2025-49366 is a local file inclusion (LFI) vulnerability in the WordPress Hanani theme up to version 1.2.11 . The issue arises from improper control of filenames in PHP include/require statements, enabling an attacker to include local files. Affected product: AncoraThemes Hanani/Hanani WordPr...