2 matches found
CVE-2026-25381
CVE-2026-25381 affects the LoveDate WordPress theme (LoveDate/Lovedate) via Improper Control of Filename for Include/Require statements, effectively a PHP Remote File Inclusion leading to Local File Inclusion. The Wordfence report confirms LoveDate
CVE-2026-25382 WordPress IdealAuto theme < 3.8.6 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jwsthemes IdealAuto idealauto allows PHP Local File Inclusion.This issue affects IdealAuto: from n/a through 3.8.6...