2 matches found
CVE-2026-32537
The CVE-2026-32537 entry describes an authenticated Local File Inclusion (LFI) in the WordPress plugin Visual Portfolio, Photo Gallery & Post Grid (visual-portfolio) caused by improper filename control in PHP include/require statements. Affected versions are Visual Portfolio, Photo Gallery & Post...
CVE-2026-32537
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in nK Visual Portfolio, Photo Gallery & Post Grid visual-portfolio allows PHP Local File Inclusion.This issue affects Visual Portfolio, Photo Gallery & Post Grid: from n/a through =...