CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2026/03/06 7:54 a.m.•4 views

CVE-2026-28009

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX DroneX dronex allows PHP Local File Inclusion.This issue affects DroneX: from n/a through = 1.1.12...

8.1CVSS5.8AI score0.00172EPSS

Exploits0References1

EUVD•added 2026/03/05 6:30 a.m.•2 views

EUVD-2026-9671

5.9AI score0.00172EPSS

Exploits0References2

NVD•added 2026/03/05 6:16 a.m.•3 views

CVE-2026-28009

8.1CVSS0.00172EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•6 views

CVE-2026-28009

The CVE describes a Local File Inclusion in the WordPress DroneX theme (DroneX <= 1.1.12) due to improper control of filenames for include/require statements. Public sources (Wordfence Intelligence) list DroneX

8.1CVSS5.9AI score0.00172EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:54 a.m.•29 views

CVE-2026-28009 WordPress DroneX theme <= 1.1.12 - Local File Inclusion vulnerability

8.1CVSS0.00172EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:54 a.m.•1 views

CVE-2026-28009 WordPress DroneX theme <= 1.1.12 - Local File Inclusion vulnerability

8.1CVSS5.8AI score0.00172EPSS

Exploits0References1

ATTACKERKB•added 2026/03/05 5:54 a.m.•3 views

CVE-2026-28009

5.9AI score0.00172EPSS

Exploits0References2

CNNVD•added 2026/03/05 12:0 a.m.•5 views

WordPress plugin DroneX 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

8.1CVSS5.8AI score0.00172EPSS

Exploits0References1