CVE-2025-52816
CVE-2025-52816 affects the WordPress theme Zita (versions up to and including 1.6.5). The issue is an improper control of the filename for include/require in PHP, enabling a PHP local file inclusion (LFI) vulnerability. Public sources rate the CVSS as high (e.g., base score 9.8 in NVD metrics, wi...