CVE-2025-53252 | zozothemes Zegen Plugin up to 1.1.9 on WordPress filename control

November 6, 2025 Yanac

A vulnerability labeled as critical has been found in zozothemes Zegen Plugin up to 1.1.9 on WordPress. The affected element is an unknown function. Executing manipulation can lead to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability appears as CVE-2025-53252. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More