VYPR

Premium Portfolio Features for Phlox theme

by Auxin

CVEs (1)

  • CVE-2025-12497HigNov 5, 2025
    risk 0.46cvss 8.1epss 0.01

    The Premium Portfolio Features for Phlox theme plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.3.10 via the 'args[extra_template_path]' parameter. This makes it possible for unauthenticated attackers to include and execute…