5 matches found
CVE-2026-22446 WordPress Prowess theme <= 1.8.1 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes Prowess prowess allows PHP Local File Inclusion.This issue affects Prowess: from n/a through = 1.8.1...
WordPress Prowess theme <= 1.8.1 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Prowess versions = 1.8.1...
WordPress Prowess theme <= 2.3 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Prowess versions = 2.3...
CVE-2026-24531
CVE-2026-24531 affects the WordPress theme Select-Themes Prowess (versions <= 2.3). The vulnerability is an Improper Control of Filename for Include/Require Statement (PHP Remote File Inclusion leading to Local File Inclusion, LFI). Public sources in the connected docs describe an LFI conditio...
CVE-2026-22447
CVE-2026-22447 is a Missing Authorization vulnerability in the WordPress Prowess theme (Select-Themes Prowess) affecting versions up to 1.8.1. Root cause described as incorrectly configured access control/security levels. Public references (NVD/Red Hat/CVE List) confirm the issue and affected ran...