WordPress Digiqole theme < 2.2.7 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Digiqole versions 2.2.7...

WordPress Digiqole theme < 2.2.7 - Local File Inclusion vulnerability

Software : Digiqole Type : Theme Vulnerable versions : 2.2.7 Fixed in : 2.2.7 OWASP Top 10 : A3: Injection Classification : Local File Inclusion CVE ID : CVE-2025-67527 Patchstack priority : Low CVSS severity : 7.5 Required privilege : Contributor Developer : Claim ownership PSID : 33e33ea74358...

CVE-2025-67527 WordPress Digiqole theme < 2.2.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in trippleS Digiqole digiqole allows PHP Local File Inclusion.This issue affects Digiqole: from n/a through 2.2.7...

CVE-2025-67527

CVE-2025-67527 affects Digiqole WordPress Theme (versions below 2.2.7). It is an authenticated Local File Inclusion via include/require in PHP (Contributor+). Patch: fixed in Digiqole 2.2.7; upgrade to 2.2.7 or later to mitigate.