CVE-2025-52816 | themehunk Zita Plugin up to 1.6.5 on WordPress filename control

June 27, 2025 Yanac

A vulnerability was found in themehunk Zita Plugin up to 1.6.5 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability was named CVE-2025-52816. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More