EUVD-2026-9688

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Motorix motorix allows PHP Local File Inclusion.This issue affects Motorix: from n/a through = 1.6...

CVE-2026-28026

CVE-2026-28026 corresponds to a Local File Inclusion (LFI) in ThemeREX Motorix (WordPress/Motorix theme) due to improper control of the filename in PHP include/require statements. Affected: Motorix versions up to and including 1.6 (notation: