CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

Cvelist•added 2026/06/02 1:51 p.m.•35 views

CVE-2025-68886 WordPress Cookiteer theme <= 1.4.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in androThemes Cookiteer allows PHP Local File Inclusion. This issue affects Cookiteer: from n/a through 1.4.8...

8.1CVSS0.00337EPSS

Exploits0References1

Vulnrichment•added 2026/06/02 9:53 a.m.•9 views

CVE-2025-53440 WordPress Confidant theme <= 1.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Confidant allows PHP Local File Inclusion. This issue affects Confidant: from n/a through 1.4...

8.1CVSS5.8AI score0.00415EPSS

Exploits0References1

Cvelist•added 2026/03/25 4:14 p.m.•24 views

CVE-2026-27080 WordPress Deston theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Deston deston allows PHP Local File Inclusion.This issue affects Deston: from n/a through = 1.0...

8.1CVSS0.00512EPSS

Exploits0References1

NVD•added 2026/03/13 7:54 p.m.•7 views

CVE-2026-32393

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Greenly Theme Addons greenly-addons allows PHP Local File Inclusion.This issue affects Greenly Theme Addons: from n/a through 8.2...

7.5CVSS0.00381EPSS

Exploits0References1

EUVD•added 2026/03/05 6:30 a.m.•3 views

EUVD-2026-9562

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Helvig helvig allows PHP Local File Inclusion.This issue affects Helvig: from n/a through = 1.0...

5.9AI score0.00504EPSS

Exploits0References2

EUVD•added 2026/03/05 6:30 a.m.•2 views

EUVD-2026-9536

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Holmes holmes allows PHP Local File Inclusion.This issue affects Holmes: from n/a through = 1.7...

5.9AI score0.00504EPSS

Exploits0References2

ATTACKERKB•added 2026/03/05 5:54 a.m.•4 views

CVE-2026-28119

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Nirvana allows PHP Local File Inclusion.This issue affects Nirvana: from n/a through 2.6...

8.1CVSS5.8AI score0.00327EPSS

Exploits0References3

Vulnrichment•added 2026/03/05 5:54 a.m.•2 views

CVE-2026-28090 WordPress Gamezone theme <= 1.1.11 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Gamezone gamezone allows PHP Local File Inclusion.This issue affects Gamezone: from n/a through = 1.1.11...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•7 views

CVE-2026-28069

CVE-2026-28069 is a Local File Inclusion vulnerability in the WordPress theme Le Truffe (≤ 1.1.7) stemming from improper control of filename for include/require statements in PHP. The issue allows PHP Local File Inclusion and has a high overall impact (CVSS v3.1: 8.1, High; network attack vector,...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•6 views

CVE-2026-28059

CVE-2026-28059 is a Local File Inclusion (LFI) vulnerability in the WordPress theme “Dermatology Clinic” by ThemeREX, affecting versions up to and including 1.4.3. The issue arises from Improper Control of Filename for Include/Require statements in PHP, enabling an attacker to potentially include...

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

CVE•added 2026/03/05 5:54 a.m.•5 views

CVE-2026-28013

CVE-2026-28013 is a Local File Inclusion vulnerability in the WordPress theme Kratz by ThemeREX, affecting version range from n/a to

8.1CVSS5.9AI score0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:54 a.m.•2 views

CVE-2026-27991 WordPress Avventure theme <= 1.1.12 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Avventure avventure allows PHP Local File Inclusion.This issue affects Avventure: from n/a through = 1.1.12...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:53 a.m.•1 views

CVE-2026-22442 WordPress Tribe theme <= 1.7.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in LaunchandSell Tribe tribe allows PHP Local File Inclusion.This issue affects Tribe: from n/a through = 1.7.3...

8.1CVSS5.8AI score0.00519EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:53 a.m.•2 views

CVE-2026-22436 WordPress Helvig theme <= 1.0 - Local File Inclusion vulnerability

8.1CVSS5.8AI score0.00504EPSS

Exploits0References1

Vulnrichment•added 2026/02/02 9:11 a.m.•5 views

CVE-2024-54263 WordPress Spirit Framework plugin <= 1.2.13 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Talemy Spirit Framework allows PHP Local File Inclusion.This issue affects Spirit Framework: from n/a through 1.2.13...

7.5CVSS5.4AI score0.00309EPSS

Exploits0References1

RedhatCVE•added 2026/01/23 9:17 p.m.•10 views

CVE-2025-69038

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in goalthemes Hyori hyori allows PHP Local File Inclusion.This issue affects Hyori: from n/a through = 1.3.6...

8.1CVSS5.5AI score0.00403EPSS

Exploits0References1

CVE•added 2026/01/22 4:51 p.m.•6 views

CVE-2025-67957

CVE-2025-67957 is a WordPress vulnerability in the Listivo Core plugin (

8.1CVSS5.5AI score0.00504EPSS

Exploits0References1

NVD•added 2025/12/18 8:15 a.m.•0 views

CVE-2025-49942

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Gardis gardis allows PHP Local File Inclusion.This issue affects Gardis: from n/a through = 1.2.13...

8.1CVSS0.00415EPSS

Exploits0References1

Vulnrichment•added 2025/12/18 7:21 a.m.•1 views

CVE-2025-58946 WordPress Vocal theme <= 1.12 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Vocal vocal allows PHP Local File Inclusion.This issue affects Vocal: from n/a through = 1.12...

8.1CVSS6.7AI score0.00415EPSS

Exploits0References1

Cvelist•added 2025/12/18 7:21 a.m.•24 views

CVE-2025-58890 WordPress Playful theme <= 1.19.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Playful playful allows PHP Local File Inclusion.This issue affects Playful: from n/a through = 1.19.0...

8.1CVSS0.00415EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by