CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/05/27 12:0 a.m.•2 views

WordPress plugin SeedProd Pro 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...

7.5CVSS5.8AI score0.00127EPSS

Vulnrichment•added 2026/05/18 12:0 a.m.•7 views

CVE-2026-29962

HSC MailInspector v5.3.3-7 contains a Local File Inclusion LFI vulnerability caused by improper control of user-supplied file paths. The endpoint /vendor/phpunit/phpunit.php processes user-controlled parameters that directly affect file access operations without adequate validation, sanitization,...

5.9AI score0.00054EPSS

Exploits1References3

NVD•added 2026/04/08 9:16 a.m.•1 views

CVE-2026-39681

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme Homeo homeo allows PHP Local File Inclusion.This issue affects Homeo: from n/a through = 1.2.59...

7.5CVSS0.00147EPSS

Positive Technologies•added 2026/04/08 12:0 a.m.•1 views

PT-2026-31243

5.9AI score0.00147EPSS

Exploits0References3

RedhatCVE•added 2026/03/26 5:1 p.m.•2 views

CVE-2026-22494

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Good Homes good-homes allows PHP Local File Inclusion.This issue affects Good Homes: from n/a through = 1.3.13...

RedhatCVE•added 2026/03/26 5:0 p.m.•1 views

CVE-2026-22514

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Unica unica allows PHP Local File Inclusion.This issue affects Unica: from n/a through = 1.4.1...

Cvelist•added 2026/03/25 4:14 p.m.•21 views

CVE-2026-27077 WordPress MultiOffice theme <= 1.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes MultiOffice multioffice allows PHP Local File Inclusion.This issue affects MultiOffice: from n/a through = 1.2...

8.1CVSS0.00172EPSS

Positive Technologies•added 2026/03/25 12:0 a.m.•1 views

PT-2026-27834

Name of the Vulnerable Software and Affected Versions AncoraThemes Triompher versions through 1.1.0 Description The software contains a flaw related to improper control of filename handling for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local...

RedhatCVE•added 2026/03/06 7:54 a.m.•3 views

Exploits0References3

CVE-2026-28119

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Nirvana nir-vana allows PHP Local File Inclusion.This issue affects Nirvana: from n/a through = 2.6...

RedhatCVE•added 2026/03/06 7:54 a.m.•2 views

CVE-2026-28120

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Dr.Patterson dr-patterson allows PHP Local File Inclusion.This issue affects Dr.Patterson: from n/a through = 1.3.2...

RedhatCVE•added 2026/03/06 7:54 a.m.•2 views

CVE-2026-28045

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX N7 | Golf Club Sports & Events n7-golf-club allows PHP Local File Inclusion.This issue affects N7 | Golf Club Sports & Events: from n/a through = 2.16.0...

RedhatCVE•added 2026/03/06 7:54 a.m.•1 views

CVE-2026-28041

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Grit grit allows PHP Local File Inclusion.This issue affects Grit: from n/a through = 1.0.1...

RedhatCVE•added 2026/03/06 7:54 a.m.•1 views

CVE-2026-28023

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Nuts nuts allows PHP Local File Inclusion.This issue affects Nuts: from n/a through = 1.10...

RedhatCVE•added 2026/03/06 7:53 a.m.•3 views

CVE-2026-22405

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Overton overton allows PHP Local File Inclusion.This issue affects Overton: from n/a through = 1.3...

Patchstack•added 2026/03/05 11:16 a.m.•1 views

WordPress Nelson theme <= 1.2.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Nelson versions = 1.2.0...

5.8AI score0.00172EPSS

Exploits0Affected Software1

EUVD•added 2026/03/05 6:30 a.m.•4 views

EUVD-2026-9780

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Verse verse allows PHP Local File Inclusion.This issue affects Verse: from n/a through = 1.7.0...

EUVD•added 2026/03/05 6:30 a.m.•2 views

EUVD-2026-9751

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX WealthCo wealthco allows PHP Local File Inclusion.This issue affects WealthCo: from n/a through = 2.18...

EUVD•added 2026/03/05 6:30 a.m.•1 views

EUVD-2026-9713

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Miller christine-miller allows PHP Local File Inclusion.This issue affects Miller: from n/a through = 1.3.3...

EUVD•added 2026/03/05 6:30 a.m.•1 views

EUVD-2026-9714

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Legal Stone legal-stone allows PHP Local File Inclusion.This issue affects Legal Stone: from n/a through = 1.2.11...