CVE-2025-69050
BaseFortify
Publication date: 2026-01-22
Last updated on: 2026-01-29
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| edge-themes | overworld | to 1.3 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-98 | The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions. |
Attack-Flow Graph
AI Powered Q&A
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability allows an attacker to include and display local files from the target website, potentially exposing sensitive information such as database credentials. Such exposure of sensitive data could lead to non-compliance with data protection regulations like GDPR and HIPAA, which require safeguarding personal and sensitive information. Therefore, exploitation of this vulnerability may result in violations of these standards due to unauthorized data disclosure. [1]
Can you explain this vulnerability to me?
CVE-2025-69050 is a Local File Inclusion (LFI) vulnerability in the WordPress Overworld Theme (versions up to 1.3). It allows an unauthenticated attacker to include and display local files from the target website by exploiting improper control of filename in PHP include/require statements. This can expose sensitive information such as database credentials. [1]
How can this vulnerability impact me? :
This vulnerability can lead to exposure of sensitive information like database credentials and potentially allow a complete database takeover depending on the website's configuration. It poses a high risk with a CVSS score of 8.1 and can be exploited without authentication. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this Local File Inclusion (LFI) vulnerability can involve monitoring for suspicious HTTP requests attempting to include local files via the vulnerable parameter in the Overworld theme. While no specific commands are provided, typical detection methods include inspecting web server logs for unusual URL patterns that attempt to include files, such as requests containing '../' sequences or attempts to access sensitive files like /etc/passwd. Additionally, using web application firewalls (WAF) with rules targeting LFI patterns can help detect exploitation attempts. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include applying the mitigation rule issued by Patchstack to block attacks targeting this vulnerability until an official patch is released. Users are strongly advised to implement this mitigation immediately to protect their sites. Additionally, restricting file inclusion permissions, disabling unnecessary PHP functions, and monitoring for suspicious activity can help reduce risk. [1]