PatchSiren

PatchSiren cyber security CVE debrief

CVE-2025-69164 ThemeREX CVE debrief

CVE-2025-69164 is a HIGH severity vulnerability (CVSS Score: 8.1) affecting Skyward theme versions <= 1.10. This vulnerability allows unauthenticated local file inclusion. The CVE was published on 2026-06-17T14:17:34.923Z and last modified on 2026-06-17T15:16:39.180Z. Organizations using affected Skyward theme versions should take immediate action to mitigate potential risks.

Vendor
ThemeREX
Product
Skyward
CVSS
HIGH 8.1
CISA KEV
Not listed in stored evidence
Original CVE published
2026-06-17
Original CVE updated
2026-06-17
Advisory published
2026-06-17
Advisory updated
2026-06-17

Who should care

Administrators and security teams responsible for managing WordPress installations with the Skyward theme version <= 1.10 should prioritize patching this vulnerability to prevent potential exploitation.

Technical summary

The vulnerability, identified as CVE-2025-69164, is caused by an unauthenticated local file inclusion weakness in the Skyward theme versions <= 1.10. This could allow attackers to access sensitive files on the server, potentially leading to information disclosure or code execution. The CVSS vector for this vulnerability is CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.

Defensive priority

HIGH

Recommended defensive actions

  • Update Skyward theme to a version greater than 1.10
  • Restrict access to sensitive files and directories
  • Implement additional security measures such as Web Application Firewalls (WAFs)
  • Regularly review and update plugins and themes
  • Monitor for suspicious activity
  • Consider using security plugins for WordPress
  • Perform regular security audits

Evidence notes

The information provided is based on data from official sources, including CVE.org and NVD. The CVE was published on 2026-06-17T14:17:34.923Z and last modified on 2026-06-17T15:16:39.180Z. The vulnerability details were obtained from Patchstack, a trusted source for WordPress vulnerabilities.

Official resources

public