CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

417 matches found

ATTACKERKB•added 2026/03/05 5:54 a.m.•2 views

CVE-2026-27997

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Maxify maxify allows PHP Local File Inclusion.This issue affects Maxify: from n/a through = 1.0.16...

5.9AI score0.00172EPSS

Exploits0References2

CVE•added 2026/03/05 5:54 a.m.•5 views

CVE-2026-27993

CVE-2026-27993 affects the WordPress Theme Aldo by ThemeREX, vulnerable to Local File Inclusion via improper filename handling. Affected product versions: Aldo

8.1CVSS5.9AI score0.00172EPSS

Exploits0References1

ATTACKERKB•added 2026/03/05 5:53 a.m.•3 views

CVE-2026-27381

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Aora aora allows PHP Local File Inclusion.This issue affects Aora: from n/a through = 1.3.15...

5.9AI score0.00172EPSS

Exploits0References2

ATTACKERKB•added 2026/03/05 5:53 a.m.•3 views

CVE-2026-27339

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Buzz Stone | Magazine & Viral Blog WordPress Theme buzzstone allows PHP Local File Inclusion.This issue affects Buzz Stone | Magazine & Viral Blog WordPress Theme:...

5.9AI score0.00172EPSS

Exploits0References2

ATTACKERKB•added 2026/03/05 5:53 a.m.•2 views

CVE-2026-27340

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Apollo | Night Club, DJ Event WordPress Theme apollo allows PHP Local File Inclusion.This issue affects Apollo | Night Club, DJ Event WordPress Theme: from n/a throu...

5.9AI score0.00172EPSS

Exploits0References2

CVE•added 2026/03/05 5:53 a.m.•8 views

CVE-2026-27337

CVE-2026-27337 is a Local File Inclusion vulnerability in the AncoraThemes Chronicle – Lifestyle Magazine & Blog WordPress Theme (Chronicle) affecting versions up to 1.0. Root cause: improper control of include/require filename handling in PHP (PHP Local File Inclusion). Exploitation details are ...

8.1CVSS5.9AI score0.00056EPSS

Exploits0References1

ATTACKERKB•added 2026/03/05 5:53 a.m.•1 views

CVE-2026-27336

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Consultor | Consulting, Accounting & Legal Counsel WordPress Theme consultor allows PHP Local File Inclusion.This issue affects Consultor | Consulting, Accounting &...

5.9AI score0.00172EPSS

Exploits0References2

ATTACKERKB•added 2026/03/05 5:53 a.m.•4 views

CVE-2026-27097

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes CasaMia | Property Rental Real Estate WordPress Theme casamia allows PHP Local File Inclusion.This issue affects CasaMia | Property Rental Real Estate WordPress Them...

5.9AI score0.00056EPSS

Exploits1References2

Cvelist•added 2026/03/05 5:53 a.m.•25 views

CVE-2026-22456 WordPress Askka theme <= 1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Askka askka allows PHP Local File Inclusion.This issue affects Askka: from n/a through = 1.0...

8.1CVSS0.00172EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:53 a.m.•3 views

CVE-2026-22452 WordPress Hoverex theme <= 1.5.10 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Hoverex hoverex allows PHP Local File Inclusion.This issue affects Hoverex: from n/a through = 1.5.10...

8.1CVSS5.8AI score0.00172EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•6 views

CVE-2026-22435

CVE-2026-22435 corresponds to AncoratThemes ElectroServ WordPress Theme vulnerability (PHP Local File Inclusion) caused by Improper Control of Filename for Include/Require Statements. Affected: ElectroServ versions up to and including 1.3.2. Impact per provided data: Local File Inclusion vulnerab...

8.1CVSS5.9AI score0.00172EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•9 views

CVE-2026-22436

CVE-2026-22436 describes an unauthenticated Local File Inclusion in the WordPress theme Helvig by Elated-Themes, affecting Helvig versions up to 1.0. The flaw arises from improper control of the filename used in PHP include/require statements (PHP Local File Inclusion). Public sources identify th...

8.1CVSS5.9AI score0.00172EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•4 views

CVE-2026-22425

CVE-2026-22425 documents a Local File Inclusion in the WordPress theme Sweet Jane (Elated-Themes)

8.1CVSS5.9AI score0.00172EPSS

Exploits0References1

Cvelist•added 2026/03/05 5:53 a.m.•27 views

CVE-2026-22423 WordPress SetSail theme <= 1.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes SetSail setsail allows PHP Local File Inclusion.This issue affects SetSail: from n/a through = 1.8...

8.1CVSS0.00172EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:53 a.m.•1 views

CVE-2026-22399 WordPress Holmes theme <= 1.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Holmes holmes allows PHP Local File Inclusion.This issue affects Holmes: from n/a through = 1.7...

8.1CVSS5.8AI score0.00172EPSS

Exploits0References1

Positive Technologies•added 2026/03/05 12:0 a.m.•2 views

PT-2026-23295

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Kratz kratz allows PHP Local File Inclusion.This issue affects Kratz: from n/a through = 1.0.12...

5.9AI score0.00172EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•2 views

PT-2026-23346

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Legrand legrand allows PHP Local File Inclusion.This issue affects Legrand: from n/a through = 2.17...

5.9AI score0.00172EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•2 views

PT-2026-23305

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Nuts nuts allows PHP Local File Inclusion.This issue affects Nuts: from n/a through = 1.10...

5.9AI score0.00172EPSS

Exploits0References2

Positive Technologies•added 2026/03/05 12:0 a.m.•3 views

PT-2026-23189

Name of the Vulnerable Software and Affected Versions LaunchandSell Tribe versions through 1.7.3 Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion. This allows for PHP Local File Inclusion...

5.8AI score0.00172EPSS

Exploits0References3

Positive Technologies•added 2026/03/05 12:0 a.m.•2 views

PT-2026-23150

Name of the Vulnerable Software and Affected Versions Mikado-Themes Aviana versions through 2.1 Description A flaw exists in Mikado-Themes Aviana that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue is related to PHP Remote File...

5.8AI score0.00172EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by