CVE-2025-58896 WordPress Otaku theme <= 1.8.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Otaku otaku allows PHP Local File Inclusion.This issue affects Otaku: from n/a through = 1.8.0...

CVE-2025-58896 WordPress Otaku theme <= 1.8.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Otaku otaku allows PHP Local File Inclusion.This issue affects Otaku: from n/a through = 1.8.0...

CVE-2025-58896

The CVE-2025-58896 entry describes an LFI in the AncoraThemes Otaku WordPress theme (≤ 1.8.0) caused by improper filename handling in PHP include/require. Affected: Otaku up to 1.8.0. Impact (CVSS v3.1): High (8.2) with network access and no user interaction; confidentiality impact high, others l...

WordPress Otaku theme <= 1.8.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Otaku versions = 1.8.0...