CVE-2025-11746 | XStore Theme Plugin up to 9.5.4 on WordPress theet_ajax_required_plugins_popup file inclusion

A vulnerability, which was classified as critical, was found in XStore Theme Plugin up to 9.5.4 on WordPress. Affected is the function theet_ajax_required_plugins_popup. Such manipulation leads to file inclusion.

This vulnerability is documented as CVE-2025-11746. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More