Local File Inclusion Vulnerability in Struktur Theme by Select-Themes
CVE-2026-57802
7.5HIGH
What is CVE-2026-57802?
The Struktur Theme by Select-Themes is affected by a local file inclusion vulnerability due to improper control of filenames used in include or require statements within PHP programs. This flaw enables attackers to potentially exploit the server by accessing local files, leading to unauthorized information disclosure or further attacks. The vulnerability impacts all versions of the Struktur theme up to and including 2.5.1, emphasizing the need for users to upgrade to secure their installations.
Affected Version(s)
Struktur 0 <= 2.5.1
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Credit
João Pedro S Alcântara (Kinorth) | Patchstack Bug Bounty Program