CVE-2026-27339
Local File Inclusion in Buzz Stone WordPress Theme
Publication date: 2026-03-05
Last updated on: 2026-03-11
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ancorathemes | buzz_stone | to 1.0.2 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-98 | The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
[{'type': 'paragraph', 'content': 'CVE-2026-27339 is a Local File Inclusion (LFI) vulnerability found in the WordPress theme "Buzz Stone | Magazine & Viral Blog" versions up to and including 1.0.2.'}, {'type': 'paragraph', 'content': 'This vulnerability allows an unauthenticated attacker to include and display local files from the target website by exploiting improper control of filename for include/require statements in PHP.'}, {'type': 'paragraph', 'content': 'As a result, sensitive information such as database credentials can be exposed.'}] [1]
How can this vulnerability impact me? :
[{'type': 'paragraph', 'content': 'Exploitation of this vulnerability can lead to the exposure of sensitive information including database credentials.'}, {'type': 'paragraph', 'content': "Depending on the website's configuration, an attacker could potentially achieve a complete database takeover."}, {'type': 'paragraph', 'content': 'This represents a high severity risk with a CVSS score of 8.1.'}] [1]
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
[{'type': 'paragraph', 'content': 'This vulnerability allows an unauthenticated attacker to include and display local files from the target website, which can be detected by monitoring for suspicious HTTP requests attempting to exploit Local File Inclusion (LFI) in the Buzz Stone WordPress theme.'}, {'type': 'paragraph', 'content': 'While no specific detection commands are provided, users can monitor web server logs for unusual requests containing file inclusion patterns such as attempts to include local files via parameters in URLs.'}, {'type': 'list_item', 'content': 'Check web server access logs for requests with suspicious parameters that may attempt to include local files, e.g., using grep or similar tools.'}, {'type': 'list_item', 'content': 'Example command to search Apache logs for potential LFI attempts: grep -iE "(include|require).*(\\.|%2e){2}" /var/log/apache2/access.log'}, {'type': 'list_item', 'content': 'Use intrusion detection systems or web application firewalls (WAF) with rules targeting LFI patterns, such as the mitigation rule provided by Patchstack.'}] [1]
What immediate steps should I take to mitigate this vulnerability?
Since no official patch is currently available for this vulnerability, immediate mitigation involves applying the Patchstack mitigation rule designed to block attacks targeting this Local File Inclusion vulnerability.
Users are strongly advised to implement this mitigation rule as soon as possible to protect their websites from exploitation.
- Apply Patchstackβs mitigation rule to block attack attempts.
- Monitor web server logs for suspicious activity related to file inclusion attempts.
- Consider temporarily disabling or replacing the vulnerable Buzz Stone theme until an official patch is released.