CVE-2025-58945 | axiomthemes EcoGrow Plugin up to 1.7 on WordPress filename control

A vulnerability categorized as critical has been discovered in axiomthemes EcoGrow Plugin up to 1.7 on WordPress. This affects an unknown part. Executing manipulation can lead to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is registered as CVE-2025-58945. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More