CVE-2026-22412

CVE-2026-22412 is a Local File Inclusion vulnerability in Mikado-Themes Eona WordPress theme (versions up to 1.3). The issue arises from improper control of include/require file names in PHP, enabling LFI. Public sources (Red Hat/NVD/patch references) confirm the impact is PHP Local File Inclusio...

CVE-2026-22412 WordPress Eona theme <= 1.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Eona eona allows PHP Local File Inclusion.This issue affects Eona: from n/a through = 1.3...

CVE-2026-22412 WordPress Eona theme <= 1.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Eona eona allows PHP Local File Inclusion.This issue affects Eona: from n/a through = 1.3...

PT-2026-23162

Name of the Vulnerable Software and Affected Versions Mikado-Themes Eona versions through 1.3 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File Inclusion...

WordPress Eona theme <= 1.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Eona versions = 1.3...