CVE-2025-62029 | themesion Grevo Plugin up to 2.4 on WordPress filename control

October 22, 2025 Yanac

A vulnerability identified as critical has been detected in themesion Grevo Plugin up to 2.4 on WordPress. This issue affects some unknown processing. The manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is uniquely identified as CVE-2025-62029. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More