Remons Theme Allows Malicious File Access on Local Server

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.1

Remons Theme Allows Malicious File Access on Local Server

CVE-2025-69090

Summary

The Remons theme, used in various websites, has a security flaw that allows hackers to access and read local files on the server. This means that sensitive information, such as passwords or database credentials, could potentially be exposed. To protect your website, update the Remons theme to a version higher than 1.3.4.

Original title

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ovatheme Remons remons allows PHP Local File Inclusion.This issue affects Re...

Original description

Vulnerability type

CWE-98 Improper Control of Filename for Include

https://patchstack.com/database/Wordpress/Theme/remons/vulnerability/wordpress-r...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026