CVE-2026-27080
Local File Inclusion Vulnerability in Mikado-Themes Deston
Publication date: 2026-03-25
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| mikado-themes | deston | to 1.0 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-98 | The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-27080 is a Local File Inclusion (LFI) vulnerability found in the WordPress Deston Theme versions up to and including 1.0. This vulnerability allows unauthenticated attackers to include and display local files from the target website.
By exploiting this flaw, attackers can potentially access sensitive information stored in local files, such as database credentials.
The vulnerability is classified under the OWASP Top 10 category A3: Injection and is considered high priority with a CVSS score of 8.1.
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to unauthorized access to sensitive files on the server, including database credentials.
Depending on the website's configuration, attackers could achieve a complete database takeover.
This poses a significant security risk as it can compromise the confidentiality and integrity of the website's data.
What immediate steps should I take to mitigate this vulnerability?
The CVE-2026-27080 vulnerability in the Deston WordPress theme has no official patch available yet.
However, Patchstack has issued a mitigation rule that can block attacks exploiting this Local File Inclusion vulnerability.
Users are advised to apply this mitigation immediately or seek assistance from their hosting provider or web developer to implement protective measures.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The CVE-2026-27080 vulnerability allows unauthenticated attackers to include and display local files from the target website, potentially exposing sensitive information such as database credentials.
Exposure of sensitive data due to this Local File Inclusion vulnerability could lead to violations of data protection regulations like GDPR and HIPAA, which require safeguarding personal and sensitive information.
Therefore, exploitation of this vulnerability may result in non-compliance with these common standards and regulations, increasing legal and financial risks for affected organizations.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
The CVE-2026-27080 vulnerability is a Local File Inclusion (LFI) issue affecting the WordPress Deston Theme up to version 1.0. Detection typically involves monitoring for attempts to exploit the LFI by including local files via HTTP requests.
To detect exploitation attempts on your web server, you can search your web server logs for suspicious requests containing patterns that try to include local files, such as requests with parameters including "../" sequences or references to sensitive files like /etc/passwd or wp-config.php.
Example commands to detect such attempts in Apache or Nginx access logs:
- grep -iE "(\.{2}/|etc/passwd|wp-config.php)" /var/log/apache2/access.log
- grep -iE "(\.{2}/|etc/passwd|wp-config.php)" /var/log/nginx/access.log
Additionally, monitoring for unusual HTTP requests targeting the Deston theme files or parameters related to include/require statements can help identify exploitation attempts.
Since no official patch is available, applying mitigation rules from Patchstack or using web application firewalls (WAF) with rules to block LFI attempts is recommended.