CVE-2025-58898 | AncoraThemes HealthHub Plugin up to 1.3.0 on WordPress filename control

A vulnerability categorized as critical has been discovered in AncoraThemes HealthHub Plugin up to 1.3.0 on WordPress. This issue affects some unknown processing. Executing manipulation can lead to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability appears as CVE-2025-58898. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More