CVE-2025-69161
Deferred Deferred - Pending Action
Unauthenticated Local File Inclusion in Snowy

Publication date: 2026-06-17

Last updated on: 2026-06-17

Assigner: Patchstack

Description
Unauthenticated Local File Inclusion in Snowy <= 1.13 versions.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-17
Last Modified
2026-06-17
Generated
2026-06-17
AI Q&A
2026-06-17
EPSS Evaluated
N/A
NVD
CVE-2025-69161
EUVD
EUVD-2025-210233
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
patchstack snowy to 1.13 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-98 The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-69161 is a Local File Inclusion (LFI) vulnerability found in the WordPress Snowy Theme versions 1.13 and below. This flaw allows an attacker to include local files from the target website without needing to be authenticated.

Exploiting this vulnerability could enable attackers to access sensitive files on the server, such as database credentials, which might lead to a complete takeover of the database depending on the server's configuration.

Impact Analysis

This vulnerability poses a high risk as it can lead to unauthorized access to sensitive data stored on the server, including database credentials.

If exploited, attackers could potentially take over the entire database, compromising the confidentiality, integrity, and availability of your data.

Since the vulnerability is unauthenticated, attackers do not need any prior access, making it easier to exploit.

There is currently no official patch available, so immediate mitigation actions such as applying temporary rules or updating the theme are strongly advised.

Mitigation Strategies

The WordPress Snowy Theme versions 1.13 and below are vulnerable to an unauthenticated Local File Inclusion (LFI) flaw that can expose sensitive data and lead to a database takeover.

As there is no official patch available from the theme developers yet, immediate mitigation steps include applying the temporary mitigation rule issued by Patchstack to block attacks.

  • Update the Snowy theme to a version above 1.13 once an official fix is released.
  • Apply Patchstack's automated mitigation solutions to protect your website from exploitation.
  • Seek assistance from your hosting provider or a web developer to implement temporary protections.
Compliance Impact

This vulnerability allows unauthenticated attackers to include local files on the target website, potentially exposing sensitive data such as database credentials. Exposure of such sensitive information could lead to a complete database takeover depending on the server configuration.

Such data exposure and potential unauthorized access could negatively impact compliance with common standards and regulations like GDPR and HIPAA, which require protection of sensitive personal and health information.

Immediate mitigation and patching are advised to reduce the risk of data breaches that would violate these compliance requirements.

Detection Guidance

There is no specific detection method or commands provided in the available resources for identifying the CVE-2025-69161 vulnerability on your network or system.

However, since this is an unauthenticated Local File Inclusion (LFI) vulnerability in the WordPress Snowy Theme versions 1.13 and below, detection typically involves monitoring for suspicious HTTP requests attempting to include local files via the theme.

Patchstack has issued a temporary mitigation rule to block attacks until an official fix is released, and they offer automated mitigation solutions.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-69161. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart