WordPress HotLock Theme <= 1.3.9 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Bonds in WordPress Theme HotLock versions = 1.3.9...

WordPress HotLock Theme <= 1.3.9 is vulnerable to Local File Inclusion

Software HotLock Type Theme Vulnerable versions = 1.3.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-26592 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 457feca0b67b Credits Bonds Required privilege Unauthenticated Published ...