CVE-2025-68543

CVE-2025-68543: Local File Inclusion in WordPress theme Diza (thembay) up to version 1.3.15 due to improper control of include/require filenames. Affected: Diza

CVE-2025-68543 WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Diza diza allows PHP Local File Inclusion.This issue affects Diza: from n/a through = 1.3.15...

WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Diza versions = 1.3.15...

CVE-2025-68544 WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Thembay Diza allows PHP Local File Inclusion.This issue affects Diza: from n/a through 1.3.15...

CVE-2025-68544

The CVE-2025-68544 entry corresponds to a Local File Inclusion (LFI) vulnerability in WordPress Diza theme (and related WordPress Diza plugin contexts) up to version 1.3.15. The root cause is improper filtering of local file resource calls, enabling PHP LFI. Affected component: WordPress Diza the...

CVE-2025-68544 WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Diza diza allows PHP Local File Inclusion.This issue affects Diza: from n/a through = 1.3.15...

WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability

Software : Diza Type : Theme Vulnerable versions : = 1.3.15 Fixed in : 1.3.16 OWASP Top 10 : A3: Injection Classification : Local File Inclusion CVE ID : CVE-2025-68544 Patchstack priority : Low CVSS severity : 7.5 Required privilege : Contributor Developer : Claim ownership PSID : f639a1eb5493...

WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Diza versions = 1.3.15...

WordPress Diza theme <= 1.3.9 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Diza versions = 1.3.9...

CVE-2025-52729 WordPress Diza theme <= 1.3.9 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Diza diza allows PHP Local File Inclusion.This issue affects Diza: from n/a through = 1.3.9...

CVE-2025-52729 WordPress Diza theme <= 1.3.9 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Diza allows PHP Local File Inclusion. This issue affects Diza: from n/a through 1.3.9...

CVE-2025-52729

CVE-2025-52729 is a Local File Inclusion vulnerability in the Diza WordPress theme (thembay) via improper control of filenames for PHP include/require. Affected versions are Diza

WordPress Diza theme <= 1.3.8 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Phat RiO - BlueRock in WordPress Theme Diza versions = 1.3.8...

WordPress Diza Theme <= 1.3.8 is vulnerable to Local File Inclusion

Software Diza Type Theme Vulnerable versions = 1.3.8 Fixed in 1.3.9 OWASP Top 10 A4: Insecure Design Classification Local File Inclusion CVE CVE-2025-49261 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 245a89f54fc7 Credits Phat RiO - BlueRock Required privilege...