CVE-2025-58708 | axiomthemes 777 Plugin up to 1.3 on WordPress filename control

December 18, 2025 Yanac

A vulnerability, which was classified as critical, was found in axiomthemes 777 Plugin up to 1.3 on WordPress. This impacts an unknown function. Executing manipulation can lead to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is tracked as CVE-2025-58708. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More