CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

8765 matches found

CVE•added 2026/03/05 5:54 a.m.•8 views

CVE-2026-28084

CVE-2026-28084 is a Local File Inclusion vulnerability in the WordPress theme Bazinga (ThemeREX Bazinga). The issue arises from improper control of the filename used in PHP Include/Require, allowing an attacker to include local files. The vulnerability affects Bazinga versions from unspecified ea...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•9 views

CVE-2026-28086

CVE-2026-28086 describes a Local File Inclusion in ThemeREX Run Gran (WordPress theme) versions up to and including 2.0, caused by Improper Control of Filename for Include/Require in PHP. The vulnerability allows an attacker to abuse include/require filename handling to access local files on the ...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•8 views

CVE-2026-28081

CVE-2026-28081 is a PHP Local File Inclusion in ThemeREX Windsor (Windsor) versions

8.1CVSS5.9AI score0.00415EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:54 a.m.•27 views

CVE-2026-28086 WordPress Run Gran theme <= 2.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Run Gran run-gran allows PHP Local File Inclusion.This issue affects Run Gran: from n/a through = 2.0...

8.1CVSS0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:54 a.m.•29 views

CVE-2026-28081 WordPress Windsor theme <= 2.5.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Windsor windsor allows PHP Local File Inclusion.This issue affects Windsor: from n/a through = 2.5.0...

8.1CVSS0.00415EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:54 a.m.•26 views

CVE-2026-28079 WordPress Conquerors theme <= 1.2.13 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Conquerors conquerors allows PHP Local File Inclusion.This issue affects Conquerors: from n/a through = 1.2.13...

8.1CVSS0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:54 a.m.•2 views

CVE-2026-28079 WordPress Conquerors theme <= 1.2.13 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Conquerors conquerors allows PHP Local File Inclusion.This issue affects Conquerors: from n/a through = 1.2.13...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:54 a.m.•29 views

CVE-2026-28077 WordPress Vapester theme <= 1.1.10 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Vapester vapester allows PHP Local File Inclusion.This issue affects Vapester: from n/a through = 1.1.10...

8.1CVSS0.00415EPSS

Exploits0References1

ATTACKERKB•added 2026/03/05 5:54 a.m.•1 views

CVE-2026-28077

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Vapester vapester allows PHP Local File Inclusion.This issue affects Vapester: from n/a through = 1.1.10...

5.9AI score0.00415EPSS

Exploits0References2

CVE•added 2026/03/05 5:54 a.m.•7 views

CVE-2026-28069

CVE-2026-28069 is a Local File Inclusion vulnerability in the WordPress theme Le Truffe (≤ 1.1.7) stemming from improper control of filename for include/require statements in PHP. The issue allows PHP Local File Inclusion and has a high overall impact (CVSS v3.1: 8.1, High; network attack vector,...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

ATTACKERKB•added 2026/03/05 5:54 a.m.•1 views

CVE-2026-28069

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Le Truffe letruffe allows PHP Local File Inclusion.This issue affects Le Truffe: from n/a through = 1.1.7...

5.9AI score0.00403EPSS

Exploits0References2

Cvelist•added 2026/03/05 5:54 a.m.•28 views

CVE-2026-28068 WordPress Rhythmo theme <= 1.3.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Rhythmo rhythmo allows PHP Local File Inclusion.This issue affects Rhythmo: from n/a through = 1.3.4...

8.1CVSS0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:54 a.m.•30 views

CVE-2026-28069 WordPress Le Truffe theme <= 1.1.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Le Truffe letruffe allows PHP Local File Inclusion.This issue affects Le Truffe: from n/a through = 1.1.7...

8.1CVSS0.00403EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•10 views

CVE-2026-28063

CVE-2026-28063 refers to the ThemeREX Asia Garden WordPress theme vulnerability: an improper filename control in PHP Include/Require leading to Local File Inclusion in Asia Garden versions

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•8 views

CVE-2026-28065

CVE-2026-28065 is a Local File Inclusion vulnerability in the WordPress theme ThemeREX Eject , affecting versions up to and including 2.17 . The issue is described as an Improper Control of Filename for Include/Require Statement in PHP, enabling access to local files via PHP include/require. Publ...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•8 views

CVE-2026-28066

CVE-2026-28066 (WordPress Legrand theme) Description: Local File Inclusion via Improper Control of Filename for Include/Require in PHP. Affected product: ThemeREX Legrand WordPress theme (Legrand) with versions up to and including 2.17. Vulnerability type: PHP Local File Inclusion (LFI) due to im...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:54 a.m.•2 views

CVE-2026-28063 WordPress Asia Garden theme <= 1.3.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Asia Garden asia-garden allows PHP Local File Inclusion.This issue affects Asia Garden: from n/a through = 1.3.1...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:54 a.m.•31 views

CVE-2026-28065 WordPress Eject theme <= 2.17 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Eject eject allows PHP Local File Inclusion.This issue affects Eject: from n/a through = 2.17...

8.1CVSS0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:54 a.m.•28 views

CVE-2026-28064 WordPress Edge Decor theme <= 2.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Edge Decor edge-decor allows PHP Local File Inclusion.This issue affects Edge Decor: from n/a through = 2.2...

8.1CVSS0.00433EPSS

Exploits0References1

ATTACKERKB•added 2026/03/05 5:54 a.m.•2 views

CVE-2026-28066

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Legrand legrand allows PHP Local File Inclusion.This issue affects Legrand: from n/a through = 2.17...

5.9AI score0.00403EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by