CVE-2025-58891 | AncoraThemes Sanger Plugin up to 1.24.0 on WordPress filename control

A vulnerability described as critical has been identified in AncoraThemes Sanger Plugin up to 1.24.0 on WordPress. This affects an unknown function. Such manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is uniquely identified as CVE-2025-58891. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More