Improper control of filename in the Wanderic theme’s PHP include/require logic enables attackers to specify arbitrary local file paths. The flaw can be abused to read sensitive files such as configuration or user credentials, and if an attacker can place malicious code in the web directory, it may be delivered to the server for execution. This compromise affects confidentiality, integrity, and availability of the affected WordPress installation and could lead to full server takeover if the attacker gains code execution.

AncoraThemes Wanderic theme is affected. All releases from the earliest available version up through 1.0.10 are vulnerable. Versions beyond 1.0.10 have no known claim to address this issue.

The CVSS score of 8.1 indicates a high severity vulnerability. The EPSS score of less than 1% indicates that, at the time of analysis, exploitation is considered unlikely but not impossible. The vulnerability is not listed in the CISA KEV catalog. Attackers could trigger the flaw by sending a crafted request that provides a filename parameter that the theme processes. Because the vulnerable logic runs under the same permissions as the web server, successful exploitation could allow an attacker to read arbitrary files or execute code contained within the local filesystem. Based on the description, the likely attack vector is remote via a specially crafted HTTP request to the WordPress site.