CVE-2026-27990 WordPress ConFix theme <= 1.013 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX ConFix confix allows PHP Local File Inclusion.This issue affects ConFix: from n/a through = 1.013...

CVE-2026-27990 WordPress ConFix theme <= 1.013 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX ConFix confix allows PHP Local File Inclusion.This issue affects ConFix: from n/a through = 1.013...

CVE-2026-27990

CVE-2026-27990 is an Unauthenticated Local File Inclusion in the WordPress Theme ConFix (ThemeREX ConFix confix) &lt;= 1.013, caused by Improper control of filename for PHP include/require statements. Public sources describe it as a PHP Remote File Inclusion vulnerability that effectively allows ...

WordPress ConFix theme <= 1.013 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme ConFix versions = 1.013...