CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1142 matches found

Vulnrichment•added 2026/03/05 5:53 a.m.•2 views

CVE-2026-22421 WordPress Quantum theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Quantum quantum allows PHP Local File Inclusion.This issue affects Quantum: from n/a through = 1.0...

5.8AI score0.00504EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•22 views

CVE-2026-22419

CVE-2026-22419 – Local File Inclusion in AncoraThemes Honor WordPress theme (vulnerable

8.1CVSS5.9AI score0.00504EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•8 views

CVE-2026-22410

CVE-2026-22410 concerns Mikado-Themes Dolcino (WordPress Dolcino theme) with a Local File Inclusion due to Improper Control of Filename for Include/Require Statement. Affected: Dolcino versions through 1.6. Root cause: PHP Include/Require filename handling allows LFI. Impact: high severity potent...

8.1CVSS5.9AI score0.00504EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:53 a.m.•2 views

CVE-2026-22397 WordPress Fleur theme <= 2.2.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Fleur fleur allows PHP Local File Inclusion.This issue affects Fleur: from n/a through = 2.2.1...

8.1CVSS5.8AI score0.00504EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:53 a.m.•47 views

CVE-2026-22399 WordPress Holmes theme <= 1.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Holmes holmes allows PHP Local File Inclusion.This issue affects Holmes: from n/a through = 1.7...

8.1CVSS0.00504EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•10 views

CVE-2026-22389

CVE-2026-22389 describes an unauthorized Local File Inclusion (LFI) vulnerability in the WordPress theme Mikado-Themes Cocco cocco (versions up to and including 1.5.1). The issue arises from improper control of filenames used in PHP include/require statements, effectively enabling an attacker to ...

8.1CVSS5.8AI score0.00504EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:53 a.m.•31 views

CVE-2026-22389 WordPress Cocco theme <= 2.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Cocco cocco allows PHP Local File Inclusion.This issue affects Cocco: from n/a through = 2.0...

8.1CVSS0.00504EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•10 views

CVE-2026-22385

CVE-2026-22385 is a Local File Inclusion (LFI) flaw in the WordPress Wolmart theme. Data from multiple sources confirms an Improper Control of Filename for Include/Require Statement in PHP, enabling LFI via Wolmart

8.1CVSS5.9AI score0.00519EPSS

Exploits0References1

Positive Technologies•added 2026/03/05 12:0 a.m.•4 views

PT-2026-23336

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX MCKinney's Politics mckinney-politics allows PHP Local File Inclusion.This issue affects MCKinney's Politics: from n/a through = 1.2.8...

5.9AI score0.00403EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•4 views

PT-2026-23327

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in magentech Victo victo allows PHP Local File Inclusion.This issue affects Victo: from n/a through = 1.4.16...

5.9AI score0.00415EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•5 views

PT-2026-23312

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Bonbon bonbon allows PHP Local File Inclusion.This issue affects Bonbon: from n/a through = 1.6...

5.9AI score0.00433EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•4 views

PT-2026-23191

Name of the Vulnerable Software and Affected Versions Select-Themes Prowess versions through 1.8.1 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion. This allows for PHP Local File Inclusion. The affect...

5.8AI score0.00504EPSS

Exploits0References3

Positive Technologies•added 2026/03/05 12:0 a.m.•4 views

PT-2026-23210

Name of the Vulnerable Software and Affected Versions Elated-Themes FindAll versions through 1.4 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File Inclusio...

5.8AI score0.00504EPSS

Exploits0References3

Positive Technologies•added 2026/03/05 12:0 a.m.•5 views

PT-2026-23168

Name of the Vulnerable Software and Affected Versions AncoraThemes Great Lotus versions through 1.3.1 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of...

5.8AI score0.00504EPSS

Exploits0References3

Positive Technologies•added 2026/03/05 12:0 a.m.•3 views

PT-2026-23176

Name of the Vulnerable Software and Affected Versions AncoraThemes Tooth Fairy versions through 1.16 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File...

5.8AI score0.00519EPSS

Exploits0References3

Positive Technologies•added 2026/03/05 12:0 a.m.•7 views

PT-2026-23309

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Kayon kayon allows PHP Local File Inclusion.This issue affects Kayon: from n/a through = 1.3...

5.9AI score0.00403EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•6 views

PT-2026-23182

Name of the Vulnerable Software and Affected Versions AncoraThemes ElectroServ versions through 1.3.2 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File...

5.8AI score0.00504EPSS

Exploits0References3

CNNVD•added 2026/03/05 12:0 a.m.•7 views

WordPress plugin Police Department 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

8.1CVSS5.8AI score0.00403EPSS

Exploits0References1

Positive Technologies•added 2026/03/05 12:0 a.m.•8 views

PT-2026-23400

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Verse verse allows PHP Local File Inclusion.This issue affects Verse: from n/a through = 1.7.0...

5.9AI score0.00337EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•10 views

PT-2026-23311

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX EmojiNation emojination allows PHP Local File Inclusion.This issue affects EmojiNation: from n/a through = 1.0.12...

5.9AI score0.00403EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by