CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2026-22443 WordPress Alliance theme <= 3.1.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Alliance alliance allows PHP Local File Inclusion.This issue affects Alliance: from n/a through = 3.1.1...

5.8AI score0.00504EPSS

CVE•added 2026/03/05 5:53 a.m.•6 views

CVE-2026-22442

CVE-2026-22442 is a Local File Inclusion vulnerability in the WordPress Tribe theme (LaunchandSell Tribe) affecting versions up to 1.7.3. The issue is caused by improper handling of filename resolution in include/require statements, enabling an attacker to potentially include local files via PHP....

Cvelist•added 2026/03/05 5:53 a.m.•27 views

CVE-2026-22442 WordPress Tribe theme <= 1.7.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in LaunchandSell Tribe tribe allows PHP Local File Inclusion.This issue affects Tribe: from n/a through = 1.7.3...

8.1CVSS0.00519EPSS

Cvelist•added 2026/03/05 5:53 a.m.•26 views

CVE-2026-22439 WordPress Green Planet theme <= 1.1.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Green Planet green-planet allows PHP Local File Inclusion.This issue affects Green Planet: from n/a through = 1.1.14...

Vulnrichment•added 2026/03/05 5:53 a.m.•0 views

CVE-2026-22442 WordPress Tribe theme <= 1.7.3 - Local File Inclusion vulnerability

8.1CVSS5.8AI score0.00519EPSS

Vulnrichment•added 2026/03/05 5:53 a.m.•0 views

CVE-2026-22441 WordPress Zentrum theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Zentrum zentrum allows PHP Local File Inclusion.This issue affects Zentrum: from n/a through = 1.0...

8.1CVSS5.8AI score0.00519EPSS

CVE•added 2026/03/05 5:53 a.m.•26 views

CVE-2026-22434

CVE-2026-22434 details a Local File Inclusion in Crown Art (AncoraThemes Crown Art) WordPress theme. Public sources confirm improper control of filename for include/require statements, leading to PHP Local File Inclusion on Crown Art versions n/a–

8.1CVSS5.9AI score0.00504EPSS

Cvelist•added 2026/03/05 5:53 a.m.•29 views

CVE-2026-22435 WordPress ElectroServ theme <= 1.3.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes ElectroServ electroserv allows PHP Local File Inclusion.This issue affects ElectroServ: from n/a through = 1.3.2...

CVE-2026-22434 WordPress Crown Art theme <= 1.2.11 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Crown Art crown-art allows PHP Local File Inclusion.This issue affects Crown Art: from n/a through = 1.2.11...

Vulnrichment•added 2026/03/05 5:53 a.m.•1 views

CVE-2026-22435 WordPress ElectroServ theme <= 1.3.2 - Local File Inclusion vulnerability

Cvelist•added 2026/03/05 5:53 a.m.•27 views

CVE-2026-22436 WordPress Helvig theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Helvig helvig allows PHP Local File Inclusion.This issue affects Helvig: from n/a through = 1.0...

CVE-2026-22436 WordPress Helvig theme <= 1.0 - Local File Inclusion vulnerability

CVE-2026-22437 WordPress Playa theme <= 1.3.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Playa playa allows PHP Local File Inclusion.This issue affects Playa: from n/a through = 1.3.9...

CVE•added 2026/03/05 5:53 a.m.•18 views

CVE-2026-22436

CVE-2026-22436 describes an unauthenticated Local File Inclusion in the WordPress theme Helvig by Elated-Themes, affecting Helvig versions up to 1.0. The flaw arises from improper control of the filename used in PHP include/require statements (PHP Local File Inclusion). Public sources identify th...

8.1CVSS5.9AI score0.00504EPSS

CVE•added 2026/03/05 5:53 a.m.•8 views

CVE-2026-22429

CVE-2026-22429 concerns the Mikado-Themes Verdure Verdure WordPress theme (versions up to and including 1.6). The issue is an Improper Control of Filename for Include/Require Statement, i.e., a Local File Inclusion (LFI) vulnerability in PHP. The NVD/Red Hat/PTSecurity entries confirm the vulnera...

CVE•added 2026/03/05 5:53 a.m.•7 views

CVE-2026-22431

CVE-2026-22431 affects AncoraThemes Wabi-Sabi (WordPress theme) up to version 1.2 and is a Local File Inclusion (LFI) vulnerability caused by improper control of filenames in Include/Require statements in PHP. Public sources (NVD/Red Hat/CVE listings) describe an LFI impact with high severity (CV...

CVE•added 2026/03/05 5:53 a.m.•7 views

CVE-2026-22432

CVE-2026-22432 is a PHP Local File Inclusion in the WordPress theme Woopy (AncoraThemes) affecting versions up to and including 1.2. The root cause is Improp er Control of Filename for Include/Require statements, enabling local file inclusion. CVSS v3.1 base score is 8.1 (HIGH) with Network attac...

Cvelist•added 2026/03/05 5:53 a.m.•26 views

CVE-2026-22432 WordPress Woopy theme <= 1.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Woopy woopy allows PHP Local File Inclusion.This issue affects Woopy: from n/a through = 1.2...

8.1CVSS0.00519EPSS

Cvelist•added 2026/03/05 5:53 a.m.•28 views

CVE-2026-22433 WordPress CloudMe theme <= 1.2.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes CloudMe cloudme allows PHP Local File Inclusion.This issue affects CloudMe: from n/a through = 1.2.2...

Vulnrichment•added 2026/03/05 5:53 a.m.•1 views

CVE-2026-22432 WordPress Woopy theme <= 1.2 - Local File Inclusion vulnerability

8.1CVSS5.8AI score0.00519EPSS