Local File Inclusion Vulnerability in Struktur Theme by Select-Themes
CVE-2026-57802

7.5HIGH

Key Information:

Vendor

WordPress

Status
Vendor
CVE Published:
13 July 2026

What is CVE-2026-57802?

The Struktur Theme by Select-Themes is affected by a local file inclusion vulnerability due to improper control of filenames used in include or require statements within PHP programs. This flaw enables attackers to potentially exploit the server by accessing local files, leading to unauthorized information disclosure or further attacks. The vulnerability impacts all versions of the Struktur theme up to and including 2.5.1, emphasizing the need for users to upgrade to secure their installations.

Affected Version(s)

Struktur 0 <= 2.5.1

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

João Pedro S Alcântara (Kinorth) | Patchstack Bug Bounty Program
.