CVE-2026-27093

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme Tripgo tripgo allows PHP Local File Inclusion.This issue affects Tripgo: from n/a through 1.5.6...

EUVD-2025-201986

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in DFDevelopment Ronneby Theme Core ronneby-core allows PHP Local File Inclusion.This issue affects Ronneby Theme Core: from n/a through = 1.5.68...

PT-2025-33173 · Unknown · Geo Mashup

Name of the Vulnerable Software and Affected Versions: Geo Mashup versions through 1.13.16 Description: A flaw exists in the handling of filename control for include/require statements within a PHP program, specifically a PHP Local File Inclusion issue in Dylan Kuhn Geo Mashup. This allows for th...

PT-2025-2805 · Flxeon · Flxeon

Name of the Vulnerable Software and Affected Versions: FLXEON versions 9.3.4 and older Description: Network access can be used to execute arbitrary code with elevated privileges. This issue is related to incorrect handling of file names for PHP functions include or require, which may allow a remo...