CVE-2025-60053 WordPress MaxCube theme <= 1.3.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes MaxCube maxcube allows PHP Local File Inclusion.This issue affects MaxCube: from n/a through = 1.3.1...

EUVD-2025-204135

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Panda panda allows PHP Local File Inclusion.This issue affects Panda: from n/a through = 1.21...

CVE-2025-60049

CVE-2025-60049 concerns the WordPress Soleil theme (versions

EUVD-2025-204136

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Soleil soleil allows PHP Local File Inclusion.This issue affects Soleil: from n/a through = 1.17...

EUVD-2025-204141

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Fribbo fribbo allows PHP Local File Inclusion.This issue affects Fribbo: from n/a through = 1.1.0...

CVE-2025-60046 WordPress HeartStar theme <= 1.0.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes HeartStar heartstar allows PHP Local File Inclusion.This issue affects HeartStar: from n/a through = 1.0.14...

CVE-2025-60044

CVE-2025-60044 is a Local File Inclusion vulnerability in the WordPress Fribbo theme (Fribbo) version

EUVD-2025-204142

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Wanderic wanderic allows PHP Local File Inclusion.This issue affects Wanderic: from n/a through = 1.0.10...

CVE-2025-58942

The CVE-2025-58942 entry concerns the WordPress Dwell theme (Dwell by axiomthemes) with a Local File Inclusion flaw due to improper filename control in PHP include/require statements. Affected: Dwell versions n/a through 1.7.0. Root cause: PHP Local File Inclusion via mismanaged filename handling...

CVE-2025-58944 WordPress Manufactory theme <= 1.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Manufactory manufactory allows PHP Local File Inclusion.This issue affects Manufactory: from n/a through = 1.4...

EUVD-2025-204151

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes EcoGrow ecogrow allows PHP Local File Inclusion.This issue affects EcoGrow: from n/a through = 1.7...

CVE-2025-58933

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Anubis anubis allows PHP Local File Inclusion.This issue affects Anubis: from n/a through = 1.25...

CVE-2025-58933 WordPress Anubis theme <= 1.25 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Anubis anubis allows PHP Local File Inclusion.This issue affects Anubis: from n/a through = 1.25...

CVE-2025-58926 WordPress Cerebrum theme <= 1.12 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Cerebrum cerebrum allows PHP Local File Inclusion.This issue affects Cerebrum: from n/a through = 1.12...

CVE-2025-58923 WordPress Critique theme <= 1.17 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Critique critique allows PHP Local File Inclusion.This issue affects Critique: from n/a through = 1.17...

CVE-2025-58899

CVE-2025-58899 affects WordPress Frame/AncoraThemes Frame frame versions up to and including 2.4.0. The vulnerability is a PHP Local File Inclusion caused by improper control of the filename for include/require statements. As described in the sources, this can lead to local file inclusion within ...

CVE-2025-58895 WordPress Integro theme <= 1.8.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Integro integro allows PHP Local File Inclusion.This issue affects Integro: from n/a through = 1.8.0...

CVE-2025-53443

The CVE-2025-53443 affects the WordPress Smash theme up to version 1.7, where an Improper Control of Filename for Include/Require Statement (PHP Remote File Inclusion) enables Local File Inclusion. Vulnerable component: axiomthemes Smash theme, WordPress plugin/theme context. Root cause: filename...

CVE-2025-53436 WordPress Monki theme <= 2.0.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme Monki monki allows PHP Local File Inclusion.This issue affects Monki: from n/a through = 2.0.5...

CVE-2025-53430 WordPress Etta theme <= 1.14.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Etta etta allows PHP Local File Inclusion.This issue affects Etta: from n/a through = 1.14.0...