Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech Revo revo allows PHP Local File Inclusion.This issue affects Revo: from n/a through <= 4.0.26.
Published: 2025-06-09
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

magentech Revo theme suffers from improper control of filenames used in PHP include/require statements, allowing local file inclusion. The weakness, identified as CWE-98, is inferred to allow a remote attacker to send crafted requests that cause the theme to read or execute arbitrary files on the server, potentially exposing sensitive data or executing malicious code. The impact is local to the web host and can lead to confidentiality and integrity compromise of server files.

Affected Systems

All installations of the Revo WordPress theme from its initial release through version 4.0.26 are affected. The vulnerability is reported for the magentech Revo theme, with affected versions listed as "<= 4.0.26".

Risk and Exploitability

The CVSS score of 7.5 indicates high severity, while the EPSS score of less than 1% suggests a low likelihood of exploitation at this time. The vulnerability is not listed in the CISA KEV catalog. It is inferred that an attacker could exploit the flaw by sending a crafted HTTP request to the WordPress site that forces the theme to include a local file, potentially allowing the attacker to read sensitive files or execute arbitrary code and fully compromise the system.

Generated by OpenCVE AI on May 1, 2026 at 07:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Revo theme to version 4.0.27 or later where the filename control issue has been fixed.
  • If an upgrade is not immediately possible, disable the theme’s file‑inclusion logic by hardcoding the include path or removing the ability to specify arbitrary files through user input.
  • Configure the PHP environment to disallow local file inclusion: set allow_url_include to Off, disable the include/require functions for the site context, or use .htaccess rules to block access to sensitive directories and files.

Generated by OpenCVE AI on May 1, 2026 at 07:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-17513 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech Revo allows PHP Local File Inclusion. This issue affects Revo: from n/a through 4.0.26.
History

Thu, 23 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}

Wed, 01 Apr 2026 23:45:00 +0000

Type Values Removed Values Added
Description Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech Revo allows PHP Local File Inclusion. This issue affects Revo: from n/a through 4.0.26. Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech Revo revo allows PHP Local File Inclusion.This issue affects Revo: from n/a through <= 4.0.26.
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}

Fri, 11 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00114}

 epss

{'score': 0.00124}

Tue, 10 Jun 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 09 Jun 2025 16:00:00 +0000

Type Values Removed Values Added
Description Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech Revo allows PHP Local File Inclusion. This issue affects Revo: from n/a through 4.0.26.
Title WordPress Revo theme <= 4.0.26 - Local File Inclusion Vulnerability
Weaknesses CWE-98
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published:

Updated: 2026-04-28T16:12:32.375Z

Reserved: 2025-04-16T06:23:43.558Z

Link: CVE-2025-39476

cve-icon Vulnrichment

Updated: 2025-06-10T13:39:43.913Z

cve-icon NVD

Status : Deferred

Published: 2025-06-09T16:15:40.380

Modified: 2026-04-23T15:29:38.147

Link: CVE-2025-39476

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-01T07:45:06Z

Weaknesses