CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

8763 matches found

CVE•added 2026/03/25 4:14 p.m.•10 views

CVE-2026-27078

CVE-2026-27078 corresponds to an LFI in Mikado-Themes Emaurri (WordPress) due to improper control of filenames in PHP include/require. Affected software: Emaurri versions up to and including 1.0.1. Impact as described in sources is PHP Local File Inclusion, with attackers potentially disclosing o...

8.1CVSS5.8AI score0.00512EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•6 views

CVE-2026-27081

CVE-2026-27081 concerns the WordPress Rosebud theme (Rosebud) with versions up to and including 1.4, exposing a Local File Inclusion via improper control of include/require filenames in PHP. The vulnerability is documented as LFI in Rosebud

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•5 views

CVE-2026-27079

CVE-2026-27079 corresponds to a Local File Inclusion vulnerability in WordPress Amfissa (Mikado-Themes) theme, described as Improper Control of Filename for Include/Require in PHP (PHP Remote File Inclusion). Affected software: Mikado-Themes Amfissa amfissa, versions n/a through 1.1. Root cause: ...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/25 4:14 p.m.•22 views

CVE-2026-27077 WordPress MultiOffice theme <= 1.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes MultiOffice multioffice allows PHP Local File Inclusion.This issue affects MultiOffice: from n/a through = 1.2...

8.1CVSS0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/25 4:14 p.m.•2 views

CVE-2026-27076 WordPress LuxeDrive theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes LuxeDrive luxedrive allows PHP Local File Inclusion.This issue affects LuxeDrive: from n/a through = 1.0...

8.1CVSS5.8AI score0.00512EPSS

Exploits0References1

Vulnrichment•added 2026/03/25 4:14 p.m.•2 views

CVE-2026-27075 WordPress Belfort theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Belfort belfort allows PHP Local File Inclusion.This issue affects Belfort: from n/a through = 1.0...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•4 views

CVE-2026-27076

CVE-2026-27076 is a Local File Inclusion in the WordPress LuxeDrive theme (1.0 or appropriate mitigation from the patch source; monitor for patches and advisories if you manage LuxeDrive deployments. If exact patch version not yet released in your environment, consider temporary mitigations until...

8.1CVSS5.8AI score0.00512EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•8 views

CVE-2026-27077

CVE-2026-27077 affects Mikado-Themes MultiOffice WordPress theme (MultiOffice)

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•6 views

CVE-2026-27075

CVE-2026-27075 concerns an Improper Control of Filename for Include/Require Statement (PHP Local File Inclusion) in Mikado-Themes Belfort (WordPress theme Belfort). The vulnerability allows Local File Inclusion due to inadequate validation of filenames used in PHP include/require, affecting Belfo...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/25 4:14 p.m.•0 views

CVE-2026-27047 WordPress Curly Core plugin <= 2.1.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Curly Core curly-core allows PHP Local File Inclusion.This issue affects Curly Core: from n/a through = 2.1.6...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/25 4:14 p.m.•3 views

CVE-2026-27048 WordPress The Aisle Core plugin <= 2.0.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes The Aisle Core theaisle-core allows PHP Local File Inclusion.This issue affects The Aisle Core: from n/a through = 2.0.5...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•7 views

CVE-2026-27047

CVE-2026-27047 is an unauthenticated Local File Inclusion in Curly Core (WordPress plugin: curly-core) affecting version <= 2.1.6. The issue stems from improper control of filenames used in PHP include/require, enabling an attacker to include local files via a PHP Remote File Inclusion pattern...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/25 4:14 p.m.•26 views

CVE-2026-25464 WordPress Jannah theme <= 7.6.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in TieLabs Jannah jannah allows PHP Local File Inclusion.This issue affects Jannah: from n/a through = 7.6.4...

8.1CVSS0.00403EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•13 views

CVE-2026-25464

CVE-2026-25464 affects the WordPress plugin Jannah (Jannah – Newspaper Magazine News BuddyPress AMP). The Wordfence and NVD entries describe an "Imporper Control of Filename for Include/Require Statement" vulnerability that enables PHP Local File Inclusion via manipulated include/require targets....

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/25 4:14 p.m.•22 views

CVE-2026-25458 WordPress Moments theme <= 2.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Moments moments allows PHP Local File Inclusion.This issue affects Moments: from n/a through = 2.2...

8.1CVSS0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/25 4:14 p.m.•3 views

CVE-2026-25458 WordPress Moments theme <= 2.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Moments moments allows PHP Local File Inclusion.This issue affects Moments: from n/a through = 2.2...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/25 4:14 p.m.•8 views

CVE-2026-25458

CVE-2026-25458 affects Moments (WordPress theme) up to version 2.2. The issue is an improper control of filename for include/require statements in PHP, effectively a PHP Remote File Inclusion that enables Local File Inclusion. According to Wordfence, this vulnerability is currently Unpatched; CVS...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/25 4:14 p.m.•27 views

CVE-2026-25381 WordPress LoveDate theme < 3.8.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jwsthemes LoveDate lovedate allows PHP Local File Inclusion.This issue affects LoveDate: from n/a through 3.8.6...

8.1CVSS0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/25 4:14 p.m.•2 views

CVE-2026-25381 WordPress LoveDate theme < 3.8.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jwsthemes LoveDate lovedate allows PHP Local File Inclusion.This issue affects LoveDate: from n/a through 3.8.6...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Cvelist•added 2026/03/25 4:14 p.m.•24 views

CVE-2026-25382 WordPress IdealAuto theme < 3.8.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jwsthemes IdealAuto idealauto allows PHP Local File Inclusion.This issue affects IdealAuto: from n/a through 3.8.6...

8.1CVSS0.00403EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by