CVE-2025-58926 | axiomthemes Cerebrum Plugin up to 1.12 on WordPress filename control

A vulnerability categorized as critical has been discovered in axiomthemes Cerebrum Plugin up to 1.12 on WordPress. The impacted element is an unknown function. The manipulation results in improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is reported as CVE-2025-58926. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More