CVE-2025-27362
BaseFortify
Publication date: 2025-06-09
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-98 | The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Local File Inclusion (LFI) issue in the WordPress Petito Theme up to version 1.6.2. It allows unauthenticated attackers to include and display local files from the target website by exploiting improper control of filenames in PHP include/require statements. This can expose sensitive information such as database credentials and potentially lead to a complete database takeover. [1]
How can this vulnerability impact me? :
The impact of this vulnerability includes unauthorized access to sensitive files on the website, exposure of critical information like database credentials, and potentially a full database takeover. This can compromise the integrity, confidentiality, and availability of your website and data. The vulnerability has a high severity score (8.1) and is expected to be widely exploited, making immediate mitigation important. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this Local File Inclusion vulnerability can involve monitoring for unusual HTTP requests attempting to include local files via the vulnerable theme. While specific commands are not provided, general approaches include inspecting web server logs for suspicious URL parameters that try to include local files, and using server-side malware scanning as recommended. Patchstack advises professional incident response and server-side malware scanning rather than relying solely on plugin-based scanners. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include applying the virtual patch (vPatch) provided by Patchstack, which blocks attack attempts until an official fix is released. It is also recommended to perform professional incident response and server-side malware scanning if compromise is suspected. Since no official patch is available yet, applying the virtual patch and monitoring for attacks are critical to protect affected sites. [1]