CVE-2025-64287 | Edge-Themes Alloggio Plugin up to 1.8 on WordPress filename control

A vulnerability has been found in Edge-Themes Alloggio Plugin up to 1.8 on WordPress and classified as critical. Affected by this issue is some unknown functionality. This manipulation causes improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability appears as CVE-2025-64287. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More