CVE Catalog

CVE-2025-69115

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Summary

The LuxMed | Medicine & Healthcare Doctor WordPress theme versions up to 1.2.2 are vulnerable to unauthenticated local file inclusion. An attacker can exploit this vulnerability to gain access to sensitive data on the server.

Risk Assessment

This vulnerability may lead to the exposure of confidential information and potential server takeover, posing a serious threat to the organization's security.

Recommendation

It is recommended to update the theme to the latest version to mitigate this vulnerability and conduct a security audit of the server.

Original NVD description (English source)

Unauthenticated Local File Inclusion in LuxMed | Medicine & Healthcare Doctor WordPress Theme <= 1.2.2 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS