CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2025-58879

CVE-2025-58879 affects the WordPress Festy theme (

CVE•added 2025/12/18 7:21 a.m.•10 views

CVE-2025-58888

CVE-2025-58888 concerns WordPress The Flash theme (

Vulnrichment•added 2025/12/18 7:21 a.m.•3 views

CVE-2025-58889 WordPress Towny theme <= 1.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Towny towny allows PHP Local File Inclusion.This issue affects Towny: from n/a through = 1.16...

Vulnrichment•added 2025/12/18 7:21 a.m.•2 views

CVE-2025-58885 WordPress Pathfinder theme <= 1.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pathfinder pathfinder allows PHP Local File Inclusion.This issue affects Pathfinder: from n/a through = 1.16...

Vulnrichment•added 2025/12/18 7:21 a.m.•1 views

CVE-2025-58879 WordPress Festy theme <= 1.13.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Festy festy allows PHP Local File Inclusion.This issue affects Festy: from n/a through = 1.13.0...

Cvelist•added 2025/12/18 7:21 a.m.•23 views

CVE-2025-58890 WordPress Playful theme <= 1.19.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Playful playful allows PHP Local File Inclusion.This issue affects Playful: from n/a through = 1.19.0...

8.1CVSS0.00415EPSS

Cvelist•added 2025/12/18 7:21 a.m.•21 views

CVE-2025-58888 WordPress The Flash theme <= 1.15 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes The Flash theflash allows PHP Local File Inclusion.This issue affects The Flash: from n/a through = 1.15...

8.1CVSS0.00445EPSS

Cvelist•added 2025/12/18 7:21 a.m.•26 views

CVE-2025-58879 WordPress Festy theme <= 1.13.0 - Local File Inclusion vulnerability

8.1CVSS0.00415EPSS

CVE-2025-58708

The CVE-2025-58708 entry concerns a Local File Inclusion flaw in the WordPress theme axiomthemes 777 triple-seven (versions up to and including 1.3). The underlying issue is improper control of filenames used in PHP include/require statements, enabling LFI. Impact is documented as PHP Local File ...

CVE-2025-58709

CVE-2025-58709 concerns WordPress Legacy theme

Cvelist•added 2025/12/18 7:21 a.m.•24 views

CVE-2025-58803 WordPress Algenix theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Algenix algenix allows PHP Local File Inclusion.This issue affects Algenix: from n/a through = 1.0...

8.1CVSS0.00445EPSS

Vulnrichment•added 2025/12/18 7:21 a.m.•1 views

CVE-2025-58706 WordPress Woo Hoo theme <= 1.25 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Woo Hoo woohoo allows PHP Local File Inclusion.This issue affects Woo Hoo: from n/a through = 1.25...

Cvelist•added 2025/12/18 7:21 a.m.•23 views

CVE-2025-58706 WordPress Woo Hoo theme <= 1.25 - Local File Inclusion vulnerability

8.1CVSS0.00415EPSS

CVE•added 2025/12/18 7:21 a.m.•11 views

CVE-2025-58225

CVE-2025-58225 concerns an Improper Control of Filename for Include/Require Statement (PHP Remote File Inclusion) in axiomthemes Paragon/WordPress Paragon theme versions up to 1.1, enabling PHP Local File Inclusion. The Red Hat, ENISA, NVD, CVE List, and PatchStack entries corroborate the issue i...

Vulnrichment•added 2025/12/18 7:21 a.m.•2 views

CVE-2025-58225 WordPress Paragon theme <= 1.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Paragon paragon allows PHP Local File Inclusion.This issue affects Paragon: from n/a through = 1.1...

6.7AI score0.00445EPSS

CVE-2025-53453

CVE-2025-53453 concerns the WordPress Hygia theme, affected versions up to 1.16. The Red Hat/ENISA and CVE listings describe an improper control of filenames for include/require statements, resulting in a PHP Local File Inclusion vulnerability in Hygia. Impact/mitigation details in the connected ...

Vulnrichment•added 2025/12/18 7:21 a.m.•2 views

CVE-2025-53453 WordPress Hygia theme <= 1.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Hygia hygia allows PHP Local File Inclusion.This issue affects Hygia: from n/a through = 1.16...

Cvelist•added 2025/12/18 7:21 a.m.•21 views

CVE-2025-53453 WordPress Hygia theme <= 1.16 - Local File Inclusion vulnerability

8.1CVSS0.00445EPSS

CVE-2025-53446

CVE-2025-53446 affects the WordPress theme Beautique (axiomthemes Beautique) up to version 1.5. The issue is an improper control of the filename for include/require statements, enabling PHP Local File Inclusion via a PHP Remote File Inclusion flaw. Impacted component is the PHP inclusion mechanis...

CVE•added 2025/12/18 7:21 a.m.•10 views

CVE-2025-53445

The CVE-2025-53445 entry concerns the WordPress Catwalk (axiomthemes Catwalk) plugin/theme with versions up to and including 1.4, describing an improper control of filenames for include/require statements that enables PHP Local File Inclusion. Affected component: Catwalk’s include/require handlin...