CVE-2025-49255
BaseFortify
Publication date: 2025-06-17
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-98 | The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-49255 is a Local File Inclusion (LFI) vulnerability in the WordPress Ruza Theme up to version 1.0.7. It allows an unauthenticated attacker to include and display local files from the target website. This can expose sensitive information such as database credentials and potentially lead to a complete database takeover depending on the website's configuration. [1]
How can this vulnerability impact me? :
This vulnerability can have a high impact, including exposure of sensitive information like database credentials and possibly a complete takeover of the database. It poses a high risk to the confidentiality, integrity, and availability of the affected system, as indicated by its CVSS score of 8.1. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this Local File Inclusion (LFI) vulnerability can involve monitoring for unusual HTTP requests attempting to include local files via the Ruza theme. While specific commands are not provided, typical detection methods include inspecting web server logs for suspicious URL parameters that try to include files, such as requests containing '../' sequences or attempts to access sensitive files like /etc/passwd. Additionally, professional incident response and server-side malware scanning are recommended for thorough detection, as plugin-based scanners may be unreliable due to potential malware tampering. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include applying the virtual patch (vPatch) provided by Patchstack to block attacks until the official update can be applied. Users should update the Ruza Theme to version 1.0.8 or later as soon as possible to fully resolve the vulnerability. Employing automated mitigation solutions offered by Patchstack can also help protect against mass exploitation attempts. In case of suspected compromise, professional incident response and server-side malware scanning are advised. [1]