2 matches found
CVE-2026-28089
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Daiquiri daiquiri allows PHP Local File Inclusion.This issue affects Daiquiri: from n/a through = 1.2.4...
CVE-2026-28089
CVE-2026-28089 is a reported Local File Inclusion in the WordPress theme Daiquiri (ThemeREX) up to version 1.2.4. The issue arises from improper control of filenames used in PHP include/require statements, enabling potential LFI. The description across sources confirms affected software (Daiquiri