8767 matches found
CVE-2025-69073 WordPress Piqes theme <= 1.0.11 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Piqes piqes allows PHP Local File Inclusion.This issue affects Piqes: from n/a through = 1.0.11...
CVE-2025-69072 WordPress Prider theme <= 1.1.3.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Prider prider allows PHP Local File Inclusion.This issue affects Prider: from n/a through = 1.1.3.1...
CVE-2025-69068
CVE-2025-69068 is a Local File Inclusion vulnerability in the WordPress Muji theme (Muji <= 1.2.0). The issue arises from improper control of the filename used in PHP include/require, enabling LFI. Public records (NVD/Red Hat/CVE lists) describe the affected software as Muji muji, with the vul...
CVE-2025-69065
CVE-2025-69065 — In the WordPress theme WordPress Snow Mountain (AncoraThemes) there is an issue described as an improper control of filenames for PHP Include/Require, resulting in a Local File Inclusion (LFI) vulnerability. Affected: Snow Mountain versions
CVE-2025-69065 WordPress Snow Mountain theme <= 1.4.3 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Snow Mountain snowmountain allows PHP Local File Inclusion.This issue affects Snow Mountain: from n/a through = 1.4.3...
CVE-2025-69070 WordPress Tornados theme <= 2.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Tornados tornados allows PHP Local File Inclusion.This issue affects Tornados: from n/a through = 2.1...
CVE-2025-69068 WordPress Muji theme <= 1.2.0 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Muji muji allows PHP Local File Inclusion.This issue affects Muji: from n/a through = 1.2.0...
CVE-2025-69067
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Tails tails allows PHP Local File Inclusion.This issue affects Tails: from n/a through = 1.4.12...
CVE-2025-69070 WordPress Tornados theme <= 2.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Tornados tornados allows PHP Local File Inclusion.This issue affects Tornados: from n/a through = 2.1...
CVE-2025-69067 WordPress Tails theme <= 1.4.12 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Tails tails allows PHP Local File Inclusion.This issue affects Tails: from n/a through = 1.4.12...
CVE-2025-69066 WordPress Indoor Plants theme <= 1.2.7 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Indoor Plants indoor-plants allows PHP Local File Inclusion.This issue affects Indoor Plants: from n/a through = 1.2.7...
CVE-2025-69067
CVE-2025-69067 is a PHP Local File Inclusion (LFI) vulnerability in the WordPress theme Tails by AncoraThemes. The flaw stems from improper handling of Include/Require, enabling local file inclusion via PHP in affected builds (Tails
CVE-2025-69070
CVE-2025-69070 affects the WordPress theme Tornados (AncoraThemes Tornados) up to version 2.1. Root cause: Improper Control of Filename for Include/Require Statement in PHP, enabling PHP Local File Inclusion (RFI/LFI). Exploitability per CVSS: NETWORK access, HIGH attack complexity, NO user inter...
CVE-2025-69066
CVE-2025-69066 affects the WordPress theme Indoor Plants by AncoraThemes. This is an improper filename verification leading to Local File Inclusion (PHP include/require). Affected: Indoor Plants
CVE-2025-69061
CVE-2025-69061 is a Local File Inclusion vulnerability in the WordPress MoveMe (AncoraThemes MoveMe moveme) theme, caused by improper filename handling in PHP include/require logic. The issue affects MoveMe versions up to and including 1.2.15, allowing an attacker to include local files on the se...
CVE-2025-69059
CVE-2025-69059 : Local File Inclusion in the DiveIt WordPress theme (AncoraThemes) via improper filename handling in PHP Include/Require. Affects DiveIt up to version 1.4.3 (n/a through 1.4.3). Red Hat entry repeats the issue and notes the patch status as Unpatched. Public details on a concrete f...
CVE-2025-69062 WordPress Weedles theme <= 1.1.12 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Weedles weedles allows PHP Local File Inclusion.This issue affects Weedles: from n/a through = 1.1.12...
CVE-2025-69061 WordPress MoveMe theme <= 1.2.15 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes MoveMe moveme allows PHP Local File Inclusion.This issue affects MoveMe: from n/a through = 1.2.15...
CVE-2025-69059
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes DiveIt diveit allows PHP Local File Inclusion.This issue affects DiveIt: from n/a through = 1.4.3...
CVE-2025-69064 WordPress Pets Land theme <= 1.2.8 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pets Land petsland allows PHP Local File Inclusion.This issue affects Pets Land: from n/a through = 1.2.8...