CVE-2025-68544 | Thembay Diza Plugin up to 1.3.15 on WordPress filename control

Uncategorized
Yanac

A vulnerability marked as problematic has been reported in Thembay Diza Plugin up to 1.3.15 on WordPress. Affected is an unknown function. This manipulation causes improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is handled as CVE-2025-68544. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More