4 matches found
CVE-2026-22402
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in pavothemes Triply triply allows PHP Local File Inclusion.This issue affects Triply: from n/a through = 2.4.7...
CVE-2026-22402
CVE-2026-22402 describes an improper filename control in the WordPress theme Triply (Triply Tour Booking) that enables PHP Local File Inclusion (LFI) via include/require. Affected: Triply versions from n/a through 2.4.7. Root cause: improper validation of included file paths, allowing an attacker...
CVE-2026-22402 WordPress Triply theme <= 2.4.7 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in pavothemes Triply triply allows PHP Local File Inclusion.This issue affects Triply: from n/a through = 2.4.7...
WordPress Triply theme <= 2.4.7 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Triply versions = 2.4.7...