CVE-2025-49941 WordPress GlamChic theme <= 1.0.11 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes GlamChic glamchic allows PHP Local File Inclusion.This issue affects GlamChic: from n/a through = 1.0.11...

CVE-2025-49941

CVE-2025-49941 affects the WordPress GlamChic theme (GlamChic) up to version 1.0.11. The issue is an improper control of filenames used in include/require statements, enabling Local File Inclusion (LFI) via PHP. Impact is described as high confidentiality, integrity, and availability risks in the...

WordPress GlamChic theme <= 1.0.11 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme GlamChic versions = 1.0.11...