CVE-2025-52808
BaseFortify
Publication date: 2025-06-27
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-98 | The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-52808 is a Local File Inclusion (LFI) vulnerability in the WordPress RealtyElite theme up to version 1.0.0. It allows unauthenticated attackers to include and display local files from the target website by exploiting improper control of filenames in PHP include/require statements. This can expose sensitive information such as database credentials and potentially lead to a complete database takeover. [1]
How can this vulnerability impact me? :
This vulnerability can have severe impacts including exposure of sensitive information like database credentials, unauthorized access to local files, and potentially a complete takeover of the website's database. Because it can be exploited remotely without authentication, it poses a high risk to website security and data integrity. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this Local File Inclusion (LFI) vulnerability can involve monitoring for exploitation attempts that try to include local files via the RealtyElite theme. Since no specific commands are provided, general approaches include reviewing web server logs for suspicious requests containing file inclusion patterns (e.g., requests with parameters attempting to include files like ../../etc/passwd), and using server-side malware scanning tools as plugin-based scanners may be unreliable. Professional incident response is recommended for thorough detection. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include applying the Patchstack virtual patch (vPatch) which blocks exploitation attempts without requiring changes to the theme code. Since no official patch or fixed version is available yet, using this virtual patch provides immediate protection. Additionally, monitoring for signs of compromise and conducting professional incident response and server-side malware scanning are advised. [1]