CVE-2025-58942 | axiomthemes Dwell Plugin up to 1.7.0 on WordPress filename control

A vulnerability was found in axiomthemes Dwell Plugin up to 1.7.0 on WordPress. It has been rated as critical. This impacts an unknown function. This manipulation causes improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is registered as CVE-2025-58942. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More