CVE-2026-39677 WordPress Emphires theme <= 3.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Emphires emphires allows PHP Local File Inclusion.This issue affects Emphires: from n/a through = 3.9...

CVE-2026-39677

The CVE describes a PHP Local File Inclusion in the WordPress Emphires theme (Creatives_Planet Emphires) versions up to 3.9, caused by improper control of filename for include/require statements (PHP Remote File Inclusion). Affects Emphires