CVE-2025-64359 | StylemixThemes Consulting Plugin up to 6.7.5 on WordPress filename control

A vulnerability identified as critical has been detected in StylemixThemes Consulting Plugin up to 6.7.5 on WordPress. The affected element is an unknown function. This manipulation causes improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is tracked as CVE-2025-64359. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More