CVE-2025-48126
BaseFortify
Publication date: 2025-06-09
Last updated on: 2026-04-28
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| g5plus | essential_real_estate | to 5.2.2 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-98 | The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-48126 is a Local File Inclusion (LFI) vulnerability in the WordPress Essential Real Estate plugin up to version 5.2.1. It allows unauthenticated attackers to include and display local files from the target website by exploiting improper control of filename input in PHP include/require statements. This can lead to exposure of sensitive files such as those containing database credentials, potentially enabling further attacks like complete database takeover depending on the site's configuration. [1]
How can this vulnerability impact me? :
This vulnerability can have severe impacts including unauthorized access to sensitive files on your website, exposure of database credentials, and potentially full database takeover. Since it requires no privileges to exploit, any attacker can leverage it remotely. This can lead to data breaches, website defacement, or further compromise of your server and data integrity. [1]
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability can negatively affect compliance with standards like GDPR and HIPAA because it risks unauthorized access to sensitive personal or protected health information stored on the affected website. Exposure or compromise of such data due to this vulnerability could lead to violations of data protection and privacy regulations, resulting in legal and financial consequences. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this Local File Inclusion vulnerability can be approached by monitoring for suspicious HTTP requests attempting to include local files via the Essential Real Estate plugin. Network or web server logs should be inspected for unusual URL parameters that reference local files. Additionally, applying the Patchstack virtual patch provides automated protection and can help detect attack attempts. Specific commands are not provided in the available resources. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include applying the Patchstack virtual patch (vPatch) which blocks attack attempts until an official fix is released. It is also recommended to perform professional incident response and server-side malware scanning if a compromise is suspected. Avoid relying solely on plugin-based malware scanners as they can be tampered with. Since no official patch is available yet, these measures are critical to protect your site. [1]