CVE-2025-58936 | axiomthemes Catamaran Plugin up to 1.15 on WordPress filename control

A vulnerability, which was classified as critical, has been found in axiomthemes Catamaran Plugin up to 1.15 on WordPress. This vulnerability affects unknown code. This manipulation causes improper control of filename for include/require statement in php program (‘php remote file inclusion’).

The identification of this vulnerability is CVE-2025-58936. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More