CVE-2025-58934 | axiomthemes The Gig Plugin up to 1.18.0 on WordPress filename control

December 18, 2025 Yanac

A vulnerability described as critical has been identified in axiomthemes The Gig Plugin up to 1.18.0 on WordPress. Affected by this vulnerability is an unknown functionality. Executing manipulation can lead to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is handled as CVE-2025-58934. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More