2 matches found
CVE-2025-68544
The CVE-2025-68544 entry corresponds to a Local File Inclusion (LFI) vulnerability in WordPress Diza theme (and related WordPress Diza plugin contexts) up to version 1.3.15. The root cause is improper filtering of local file resource calls, enabling PHP LFI. Affected component: WordPress Diza the...
WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability
Software : Diza Type : Theme Vulnerable versions : = 1.3.15 Fixed in : 1.3.16 OWASP Top 10 : A3: Injection Classification : Local File Inclusion CVE ID : CVE-2025-68544 Patchstack priority : Low CVSS severity : 7.5 Required privilege : Contributor Developer : Claim ownership PSID : f639a1eb5493...