CVE-2025-58215
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-09

Last updated on: 2026-04-23

Assigner: Patchstack

Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in gavias Ziston ziston allows PHP Local File Inclusion.This issue affects Ziston: from n/a through < 1.4.5.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-09
Last Modified
2026-04-23
Generated
2026-06-16
AI Q&A
2025-09-09
EPSS Evaluated
2026-06-15
NVD
CVE-2025-58215
EUVD
EUVD-2025-27458
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
patchstack ziston_theme *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-98 The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-58215 is a Local File Inclusion (LFI) vulnerability in the WordPress Ziston Theme versions prior to 1.4.5. It allows unauthenticated attackers to include and display local files from the target website by exploiting improper control of filename in PHP include/require statements. This can expose sensitive information such as database credentials and potentially lead to further compromise of the website. [1]

Impact Analysis

This vulnerability can allow attackers to access sensitive files on your website, including database credentials, which may lead to a complete database takeover. This can result in data breaches, loss of data integrity, and availability issues for your website. Attackers may automate exploitation attempts, increasing the risk of compromise if the vulnerability is not patched. [1]

Detection Guidance

Detection of this Local File Inclusion (LFI) vulnerability can involve monitoring web server logs for suspicious requests attempting to include local files, such as requests containing file path traversal patterns (e.g., '../') or attempts to access sensitive files like /etc/passwd. Additionally, scanning the WordPress site for the vulnerable Ziston theme version prior to 1.4.5 can help identify exposure. Specific commands might include using grep on access logs to find suspicious patterns, for example: grep -E "(\.{2}/|etc/passwd|boot.ini)" /var/log/apache2/access.log. Also, using vulnerability scanners that detect LFI issues or checking the installed theme version via WordPress CLI commands can assist in detection. [1]

Mitigation Strategies

Immediate mitigation steps include updating the WordPress Ziston theme to version 1.4.5 or later, which contains the fix for this vulnerability. Until the update can be applied, applying the virtual patch provided by Patchstack can help prevent exploitation. Additionally, restricting access to sensitive files via web server configuration and monitoring for suspicious activity are recommended. Ensuring that the web server and PHP configurations follow best security practices to limit file inclusion risks is also advised. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-58215. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart