CVE-2025-64363

{"id": "CVE-2025-64363", "cveTags": [], "metrics": {}, "published": "2025-10-31T12:15:36.850", "references": [{"url": "https://vdp.patchstack.com/database/Wordpress/Theme/kleo/vulnerability/wordpress-kleo-theme-5-5-0-local-file-inclusion-vulnerability", "source": "audit@patchstack.com"}], "vulnStatus": "Received", "weaknesses": [{"type": "Primary", "source": "audit@patchstack.com", "description": [{"lang": "en", "value": "CWE-98"}]}], "descriptions": [{"lang": "en", "value": "Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in SeventhQueen Kleo kleo allows PHP Local File Inclusion.This issue affects Kleo: from n/a through < 5.5.0."}], "lastModified": "2025-10-31T12:15:36.850", "sourceIdentifier": "audit@patchstack.com"}