CVE-2025-64193

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

18/12/2025

Last modified:

18/12/2025

Description

Improper Control of Filename for Include/Require Statement in PHP Program (&#39;PHP Remote File Inclusion&#39;) vulnerability in 8theme XStore xstore allows PHP Local File Inclusion.This issue affects XStore: from n/a through

Impact

References to Advisories, Solutions, and Tools

https://vdp.patchstack.com/database/Wordpress/Theme/xstore/vulnerability/wordpress-xstore-theme-9-6-1-local-file-inclusion-vulnerability?_s_id=cve