CVE-2026-22325 AxiomThemes CVE debrief

Who should care

WordPress administrators and users of the Promo theme, especially those with versions 1.3.0 or earlier, should be aware of this vulnerability and take necessary actions to secure their installations.

Technical summary

The vulnerability is caused by an unauthenticated local file inclusion (LFI) weakness in the Promo theme. This allows attackers to access sensitive files on the server, potentially leading to code execution or information disclosure. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 8.1, indicating a HIGH severity level. The CVSS vector is CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.

Defensive priority

High

Recommended defensive actions

• Update the Promo theme to a version beyond 1.3.0 if available.
• Restrict access to sensitive files and directories.
• Implement additional security measures such as web application firewalls (WAFs).
• Regularly monitor for suspicious activity and update software.
• Consider using security plugins or services for WordPress.
• Review server configurations for proper file permissions.
• Isolate sensitive data and limit access.

Evidence notes

The information provided is based on data from official sources, including the CVE.org and NVD. The CVE record and NVD detail pages provide comprehensive information about this vulnerability. Additional details can be found in the Patchstack database.

Official resources