CVE-2025-69049
BaseFortify
Publication date: 2026-01-22
Last updated on: 2026-01-29
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| elated_themes | tobel | to 1.6 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-98 | The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions. |
Attack-Flow Graph
AI Powered Q&A
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability could negatively impact compliance with standards such as GDPR and HIPAA because it allows unauthorized access to sensitive files, including those containing database credentials. Exposure of such sensitive information may lead to data breaches, violating data protection requirements mandated by these regulations. Therefore, organizations using the affected Töbel Theme should mitigate or resolve this vulnerability promptly to maintain compliance. [1]
Can you explain this vulnerability to me?
CVE-2025-69049 is a Local File Inclusion (LFI) vulnerability in the WordPress Töbel Theme (versions up to 1.6). It allows an unauthenticated attacker to include and display local files from the target website by exploiting improper control of filename in PHP include/require statements. This means attackers can access sensitive files on the server that should not be publicly accessible. [1]
How can this vulnerability impact me? :
This vulnerability can lead to exposure of sensitive files such as those containing database credentials. Depending on the site's configuration, this could result in a complete database takeover. Because it is a high-risk vulnerability with a CVSS score of 8.1, exploitation could severely compromise the security and integrity of the affected website. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection can involve monitoring web server logs for suspicious requests attempting to include local files via the vulnerable Töbel theme. Look for HTTP requests with parameters that include file paths or traversal sequences (e.g., ../). Specific commands are not provided in the resources, but using tools like grep on access logs to find patterns such as 'include' or '../' in URLs may help identify exploitation attempts. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation includes applying the Patchstack mitigation rule designed to block attacks exploiting this vulnerability until an official patch is released. Since no official fix is currently available for the Töbel Theme, applying this mitigation rule is strongly advised to protect affected sites. [1]