PatchSiren

PatchSiren cyber security CVE debrief

CVE-2025-69172 ThemeREX CVE debrief

CVE-2025-69172 is a HIGH-severity vulnerability (CVSS Score: 8.1) affecting the Resurs theme, version <= 1.3. This Unauthenticated Local File Inclusion vulnerability allows attackers to include local files without authentication. The vulnerability was published on June 17, 2026, and last modified on the same day. Users of the affected theme should take immediate action to mitigate potential risks. The vendor and product details are not confirmed, with a low confidence level. Patchstack reported this vulnerability.

Vendor
ThemeREX
Product
Resurs
CVSS
HIGH 8.1
CISA KEV
Not listed in stored evidence
Original CVE published
2026-06-17
Original CVE updated
2026-06-17
Advisory published
2026-06-17
Advisory updated
2026-06-17

Who should care

Administrators and users of the Resurs theme version <= 1.3 should be aware of this vulnerability. As it allows for unauthenticated local file inclusion, it poses a significant risk to affected systems.

Technical summary

The CVE-2025-69172 vulnerability is characterized by an Unauthenticated Local File Inclusion in the Resurs theme for WordPress, affecting versions <= 1.3. The CVSS vector is CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H, indicating a High severity. The vulnerability is associated with CWE-98.

Defensive priority

HIGH

Recommended defensive actions

  • Update the Resurs theme to a version that is not vulnerable (>= 1.4).
  • Restrict access to sensitive files and directories.
  • Implement additional security measures such as web application firewalls (WAFs).
  • Regularly monitor and update software and themes.
  • Consider using security plugins for WordPress.
  • Limit file inclusion functionality.
  • Perform regular security audits.

Evidence notes

The information provided is based on data from NVD and Patchstack. The CVE was published and modified on June 17, 2026. The vendor and product details have low confidence due to limited information.

Official resources

public