CVE-2025-53446 – This CVE describes a PHP Local File Inclusion v... (How to Fix)

Q: What is the severity of CVE-2025-53446?

CVE-2025-53446 has a CVSS score of 8.1 (HIGH). This CVE describes a PHP Local File Inclusion vulnerability in the Beautique WordPress theme. Attackers can include arbitrary local files through improper filename control in include/require statements, potentially leading to sensitive information disclosure or code execution. WordPress sites using Beautique theme version 1.5 or earlier are affected.

📋 TL;DR

This CVE describes a PHP Local File Inclusion vulnerability in the Beautique WordPress theme. Attackers can include arbitrary local files through improper filename control in include/require statements, potentially leading to sensitive information disclosure or code execution. WordPress sites using Beautique theme version 1.5 or earlier are affected.

💻 Affected Systems

Products:

WordPress Beautique Theme

Versions: <= 1.5

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Requires WordPress installation with Beautique theme active. No special configuration needed.

📦 What is this software?

Beautique by Axiomthemes

View all CVEs affecting Beautique →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, and website defacement.

🟠

Likely Case

Sensitive file disclosure (configuration files, database credentials) and limited code execution within web server context.

🟢

If Mitigated

Information disclosure limited to publicly accessible files only.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Simple HTTP requests can trigger the vulnerability. Public exploit code is available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: >1.5

Vendor Advisory: https://patchstack.com/database/Wordpress/Theme/beautique/vulnerability/wordpress-beautique-theme-1-5-local-file-inclusion-vulnerability?_s_id=cve

Restart Required: No

Instructions:

1. Update Beautique theme to latest version via WordPress admin panel. 2. If update unavailable, remove theme entirely. 3. Verify theme files are replaced with patched versions.

🔧 Temporary Workarounds

Disable Beautique Theme

all

Switch to default WordPress theme to remove vulnerable code

wp theme activate twentytwentyfour
wp theme delete beautique

Web Application Firewall Rule

linux

Block requests containing local file inclusion patterns

ModSecurity rule: SecRule ARGS "\.\./" "id:1001,phase:2,deny,status:403,msg:'Path Traversal Attempt'

🧯 If You Can't Patch

Implement strict file permission controls on web server directories
Deploy web application firewall with LFI detection rules

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel > Appearance > Themes for Beautique theme version <=1.5

Check Version:

wp theme list --field=name,status,version | grep beautique

Verify Fix Applied:

Confirm Beautique theme version >1.5 or theme is completely removed

📡 Detection & Monitoring

Log Indicators:

HTTP requests with ../ patterns in parameters
Access to sensitive files like /etc/passwd in web logs
Unusual file inclusion errors in PHP error logs

Network Indicators:

HTTP requests containing file inclusion patterns (../, /etc/, /proc/)
Unexpected file downloads from web server

SIEM Query:

source="web_access.log" AND (uri="*../*" OR uri="*/etc/*" OR uri="*/proc/*")

📊 Metadata

CVE ID: CVE-2025-53446

CVSS v3 Score: 8.1 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-98

EPSS Score: 0.17% exploit probability (37.5th percentile)

Published: December 18, 2025

Last Updated: January 20, 2026

🔗 References

https://patchstack.com/database/Wordpress/Theme/beautique/vulnerability/wordpress-beautique-theme-1-5-local-file-inclusion-vulnerability?_s_id=cve

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-53446, you might also want to check these: