5 matches found
CVE-2026-27997
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Maxify maxify allows PHP Local File Inclusion.This issue affects Maxify: from n/a through = 1.0.16...
CVE-2026-27997
CVE-2026-27997 refers to a Local File Inclusion vulnerability in the WordPress ThemeREX Maxify theme (Maxify) for WordPress. The issue is caused by improper control of filenames in PHP include/require statements, enabling a local file inclusion (LFI) condition. Affected software: ThemeREX Maxify,...
CVE-2026-27997 WordPress Maxify theme <= 1.0.16 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Maxify maxify allows PHP Local File Inclusion.This issue affects Maxify: from n/a through = 1.0.16...
CVE-2026-27997 WordPress Maxify theme <= 1.0.16 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Maxify maxify allows PHP Local File Inclusion.This issue affects Maxify: from n/a through = 1.0.16...
WordPress Maxify theme <= 1.0.16 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Maxify versions = 1.0.16...