CVE-2025-60198

CVSS 8.1 - HIGH

Description

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in dedalx Saxon - Viral Content Blog & Magazine Marketing WordPress Theme saxon allows PHP Local File Inclusion.This issue affects Saxon - Viral Content Blog & Magazine Marketing WordPress Theme: from n/a through <= 1.9.3.

References

https://vdp.patchstack.com/database/Wordpress/Them...

Weakness Types

CWE-98

CVE Information

CVE ID:: CVE-2025-60198
Published:: 2025-11-06
Modified:: 2025-11-13
CVSS Score:: 8.1
Severity:: HIGH
Vector:: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Quick Actions

View on NVD

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL