High severity8.6NVD Advisory· Published Jun 17, 2025· Updated Apr 23, 2026
CVE-2025-49879
CVE-2025-49879
Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in themezaa Litho litho allows Path Traversal.This issue affects Litho: from n/a through <= 3.0.
Affected products
2<= 3.0+ 1 more
- (no CPE)range: <= 3.0
- (no CPE)range: <=3.0
Package: https://wordpress.org/themes/litho
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.