144 matches found
CVE-2025-49941
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes GlamChic glamchic allows PHP Local File Inclusion.This issue affects GlamChic: from n/a through = 1.0.11...
CVE-2025-49366
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Hanani hanani allows PHP Local File Inclusion.This issue affects Hanani: from n/a through = 1.2.11...
CVE-2025-60065 WordPress Pinevale theme <= 1.0.14 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Pinevale pinevale allows PHP Local File Inclusion.This issue affects Pinevale: from n/a through = 1.0.14...
CVE-2025-60063 WordPress Rosalinda theme <= 1.2.3 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Rosalinda rosalinda allows PHP Local File Inclusion.This issue affects Rosalinda: from n/a through = 1.2.3...
CVE-2025-60044
CVE-2025-60044 is a Local File Inclusion vulnerability in the WordPress Fribbo theme (Fribbo) version
CVE-2025-53443
The CVE-2025-53443 affects the WordPress Smash theme up to version 1.7, where an Improper Control of Filename for Include/Require Statement (PHP Remote File Inclusion) enables Local File Inclusion. Vulnerable component: axiomthemes Smash theme, WordPress plugin/theme context. Root cause: filename...
CVE-2025-53436 WordPress Monki theme <= 2.0.5 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme Monki monki allows PHP Local File Inclusion.This issue affects Monki: from n/a through = 2.0.5...
CVE-2025-49943
CVE-2025-49943 describes an improper control of the filename for include/require statements in the WordPress AncoraThemes Femme theme (femme) that leads to a PHP Local File Inclusion, effectively turning a reported PHP Remote File Inclusion issue into local file inclusion for versions through 1.3...
CVE-2025-52745 WordPress Farm Agrico theme <= 1.3.11 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Farm Agrico farmagrico allows PHP Local File Inclusion.This issue affects Farm Agrico: from n/a through = 1.3.11...
CVE-2025-49367 WordPress Monyxi theme <= 1.1.8 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Monyxi monyxi allows PHP Local File Inclusion.This issue affects Monyxi: from n/a through = 1.1.8...
PT-2025-52035
Name of the Vulnerable Software and Affected Versions axiomthemes Harper versions through 1.13 Description A flaw exists in the handling of file inclusion within axiomthemes Harper. This issue allows for PHP Local File Inclusion. The vulnerability stems from improper control of filenames used in...
PT-2025-52053
Name of the Vulnerable Software and Affected Versions axiomthemes Paragon versions through 1.1 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion. This allows for PHP Local File Inclusion. Recommendation...
PT-2025-52118
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes DJ Rainflow dj-rainflow allows PHP Local File Inclusion.This issue affects DJ Rainflow: from n/a through = 1.3.13...
PT-2025-52014
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Strux strux allows PHP Local File Inclusion.This issue affects Strux: from n/a through = 1.9...
PT-2025-52028
Name of the Vulnerable Software and Affected Versions AncoraThemes Echo versions through 1.15.0 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of local...
PT-2025-52033
Name of the Vulnerable Software and Affected Versions ApusTheme Greenorganic versions through 2.45 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File...
PT-2025-52063
Name of the Vulnerable Software and Affected Versions axiomthemes Towny versions prior to 1.17 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion. This allows for PHP Local File Inclusion. Recommendation...
PT-2025-52105
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Fribbo fribbo allows PHP Local File Inclusion.This issue affects Fribbo: from n/a through = 1.1.0...
PT-2025-51449
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeMove MinimogWP minimog allows PHP Local File Inclusion.This issue affects MinimogWP: from n/a through = 3.9.6...
CVE-2025-67524
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in NooTheme Jobmonster Elementor Addon jobmonster-addon allows PHP Local File Inclusion.This issue affects Jobmonster Elementor Addon: from n/a through = 1.1.4...