CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/06/02 1:51 p.m.•6 views

EUVD-2025-210042

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in androThemes Cookiteer allows PHP Local File Inclusion. This issue affects Cookiteer: from n/a through 1.4.8...

8.1CVSS5.8AI score0.00337EPSS

Vulnrichment•added 2026/06/02 1:48 p.m.•6 views

CVE-2025-58897 WordPress Fermentio theme <= 1.5.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Fermentio allows PHP Local File Inclusion. This issue affects Fermentio: from n/a through 1.5.0...

8.1CVSS5.8AI score0.00337EPSS

Vulnrichment•added 2026/06/02 12:41 p.m.•8 views

CVE-2026-39553 WordPress WaveRide theme <= 1.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes WaveRide allows PHP Local File Inclusion. This issue affects WaveRide: from n/a through 1.4...

8.1CVSS5.8AI score0.00334EPSS

Positive Technologies•added 2026/06/02 12:0 a.m.•8 views

PT-2026-45728

Name of the Vulnerable Software and Affected Versions Confidant versions prior to 1.5 Description Improper control of filenames for include or require statements in the PHP program allows for Local File Inclusion. This occurs when the application fails to properly validate the file paths used in...

8.1CVSS5.8AI score0.00415EPSS

Exploits0References4

NVD•added 2026/05/26 9:16 a.m.•10 views

CVE-2026-39661

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Magentech SW Core allows PHP Local File Inclusion. This issue affects SW Core: from n/a through 1.7.18...

7.5CVSS0.00386EPSS

Positive Technologies•added 2026/05/26 12:0 a.m.•7 views

PT-2026-43206

Name of the Vulnerable Software and Affected Versions Magentech SW Core versions prior to 1.7.18 Description Improper Control of Filename for Include/Require Statement in PHP Program PHP Remote File Inclusion allows for PHP Local File Inclusion. This occurs when the application fails to properly...

7.5CVSS5.8AI score0.00386EPSS

Exploits0References6

RedhatCVE•added 2026/04/14 7:23 p.m.•3 views

CVE-2026-39538

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Mikado Core mikado-core allows PHP Local File Inclusion.This issue affects Mikado Core: from n/a through = 1.6...

7.5CVSS5.8AI score0.00381EPSS

RedhatCVE•added 2026/04/14 1:22 a.m.•0 views

CVE-2026-39679

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme Freeio freeio allows PHP Local File Inclusion.This issue affects Freeio: from n/a through = 1.3.21...

7.5CVSS5.8AI score0.00381EPSS

RedhatCVE•added 2026/04/13 7:23 p.m.•1 views

CVE-2025-5804

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Case Themes Case Theme User case-theme-user allows PHP Local File Inclusion.This issue affects Case Theme User: from n/a through 1.0.4...

7.5CVSS5.8AI score0.00392EPSS

CVE•added 2026/04/10 1:19 p.m.•13 views

CVE-2025-5804

CVE-2025-5804 affects the WordPress plugin Case Theme User (versions before 1.0.4). The issue is an Unauthenticated Local File Inclusion due to Improper Control of Filename for Include/Require Statement in PHP, enabling LFI in Case Theme User prior to 1.0.4. Public references from Patchstack/Word...

7.5CVSS5.3AI score0.00392EPSS

Positive Technologies•added 2026/04/10 12:0 a.m.•2 views

PT-2026-31914

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CactusThemes VideoPro allows PHP Local File Inclusion.This issue affects VideoPro: from n/a through 2.3.8.1...

8.1CVSS5.8AI score0.00466EPSS

EUVD•added 2026/04/08 9:31 a.m.•2 views

EUVD-2026-20372

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in UnTheme OrganicFood organicfood allows PHP Local File Inclusion.This issue affects OrganicFood: from n/a through = 3.6.4...

EUVD•added 2026/04/08 9:31 a.m.•2 views

EUVD-2026-20266

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in kutethemes Biolife biolife allows PHP Local File Inclusion.This issue affects Biolife: from n/a through = 3.2.3...

CVE•added 2026/04/08 8:30 a.m.•4 views

CVE-2026-39611

The provided documents identify CVE-2026-39611 as a Local File Inclusion (LFI) vulnerability in the WordPress KuteShop theme (KuteShop) versions up to 4.2.9, caused by improper control of the filename for include/require statements (PHP Remote File Inclusion/Local File Inclusion). Affected produc...

7.5CVSS5.9AI score0.00381EPSS

ATTACKERKB•added 2026/04/08 8:30 a.m.•3 views

CVE-2026-39611

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in kutethemes KuteShop kuteshop allows PHP Local File Inclusion.This issue affects KuteShop: from n/a through = 4.2.9...

ATTACKERKB•added 2026/04/08 8:30 a.m.•2 views

CVE-2026-39538

Positive Technologies•added 2026/04/08 12:0 a.m.•5 views

PT-2026-31147

Positive Technologies•added 2026/04/08 12:0 a.m.•4 views

Exploits0References3

PT-2026-31239

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Creatives Planet Emphires emphires allows PHP Local File Inclusion.This issue affects Emphires: from n/a through = 3.9...

RedhatCVE•added 2026/03/26 5:2 p.m.•0 views

Exploits0References3

CVE-2026-27080

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Deston deston allows PHP Local File Inclusion.This issue affects Deston: from n/a through = 1.0...

8.1CVSS5.8AI score0.00512EPSS