CVE-2025-58214 WordPress Indutri Theme < 1.3.0 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in gavias Indutri indutri allows PHP Local File Inclusion.This issue affects Indutri: from n/a through 1.3.0...

CVE-2025-58214

CVE-2025-58214 describes an unauthenticated Local File Inclusion in the WordPress theme Indutri before 1.3.0 due to improper filename handling in Include/Require statements. Affected product: gavias Indutri WordPress Theme. Root cause: improper control of filenames leading to local file inclusion...

WordPress Indutri Theme < 1.3.0 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Bonds in WordPress Theme Indutri versions 1.3.0...

WordPress Indutri Theme < 1.3.0 is vulnerable to Local File Inclusion

Software Indutri Type Theme Vulnerable versions 1.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-58214 Patch priority High CVSS severity High 8.1 Developer DDM PSID 682e3e6619f4 Credits Bonds Required privilege Unauthenticated Published 30 August, 202...