4 matches found
CVE-2025-58955 WordPress Karzo theme < 2.6 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in designervily Karzo karzo allows PHP Local File Inclusion.This issue affects Karzo: from n/a through 2.6...
CVE-2025-58955 WordPress Karzo theme < 2.6 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in designervily Karzo karzo allows PHP Local File Inclusion.This issue affects Karzo: from n/a through 2.6...
CVE-2025-58955
CVE-2025-58955 is a WordPress Theme vulnerability in Karzo (versions before 2.6) caused by improper control of filenames in include/require statements, leading to PHP Local File Inclusion (LFI). The impact is described as PHP Local File Inclusion with high risk (CVSS 3.1 base score 8.1). Multiple...
WordPress Karzo theme < 2.6 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Karzo versions 2.6...