3 matches found
CVE-2026-28057 WordPress Mandala theme <= 2.8 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Mandala mandala allows PHP Local File Inclusion.This issue affects Mandala: from n/a through = 2.8...
CVE-2026-28057
CVE-2026-28057 — Local File Inclusion in ThemeREX Mandala (WordPress theme) up to version 2.8. The issue stems from improper filename handling in PHP include/require, enabling PHP Local File Inclusion. Affected product: Mandala (ThemeREX Mandala) on WordPress; impact includes high confidentiality...
CVE-2026-28057 WordPress Mandala theme <= 2.8 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Mandala mandala allows PHP Local File Inclusion.This issue affects Mandala: from n/a through = 2.8...