CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/03/13 11:42 a.m.•12 views

CVE-2026-32393

CVE-2026-32393 concerns the WordPress plugin Greenly Theme Addons (Creatives Planet/Creatives_Planet Greenly Theme Addons) with versions older than 8.2. The issue is an Improper Control of Filename for Include/Require Statement in PHP, enabling PHP Local File Inclusion due to what is described as...

Vulnrichment•added 2026/03/13 11:42 a.m.•2 views

CVE-2026-32392 WordPress Greenly theme <= 8.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativesPlanet Greenly greenly allows PHP Local File Inclusion.This issue affects Greenly: from n/a through = 8.1...

CVE•added 2026/03/13 11:42 a.m.•7 views

CVE-2026-32392

CVE-2026-32392 affects the WordPress Greenly theme (<= 8.1). The issue is an improper control of filename for PHP include/require, enabling PHP Local File Inclusion (LFI) due to PHP Remote File Inclusion behavior. Connected sources (Red Hat, NVD, CVE lists, EUVD) corroborate the same descripti...

ATTACKERKB•added 2026/03/13 11:42 a.m.•4 views

CVE-2026-32384

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in magepeopleteam WpBookingly service-booking-manager allows PHP Local File Inclusion.This issue affects WpBookingly: from n/a through = 1.2.9...

CVE•added 2026/03/13 11:42 a.m.•8 views

Exploits0References2

CVE-2026-32384

CVE-2026-32384 describes an Improper Control of Filename for Include/Require Statement (PHP Local File Inclusion) in the WordPress plugin magepeopleteam WpBookingly service-booking-manager. Affected: WpBookingly versions up to 1.2.9. Underlying issue is local file inclusion via include/require th...

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32369

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Medilink-Core medilink-core allows PHP Local File Inclusion.This issue affects Medilink-Core: from n/a through 2.0.7...

ATTACKERKB•added 2026/03/13 11:42 a.m.•2 views

Exploits0References2

CVE-2026-32364

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in redqteam Turbo Manager turbo-manager allows PHP Local File Inclusion.This issue affects Turbo Manager: from n/a through 4.0.8...

CNNVD•added 2026/03/13 12:0 a.m.•5 views

Exploits0References2

WordPress plugin Turbo Manager 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There wa...

Positive Technologies•added 2026/03/13 12:0 a.m.•7 views

PT-2026-25247

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BoldGrid Client Invoicing by Sprout Invoices sprout-invoices allows PHP Local File Inclusion.This issue affects Client Invoicing by Sprout Invoices: from n/a through = 20.8.9...

5.8AI score0.00398EPSS

Positive Technologies•added 2026/03/13 12:0 a.m.•5 views

PT-2026-25272

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in themelexus Medilazar Core medilazar-core allows PHP Local File Inclusion.This issue affects Medilazar Core: from n/a through 1.4.7...

Positive Technologies•added 2026/03/13 12:0 a.m.•6 views

PT-2026-25239

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Creatives Planet Greenly Theme Addons greenly-addons allows PHP Local File Inclusion.This issue affects Greenly Theme Addons: from n/a through 8.2...

CNVD•added 2026/03/12 12:0 a.m.•1 views

Exploits0References4

OpenClaw Arbitrary File Read Vulnerability (CNVD-2026-13555)

OpenClaw is a tool for configuration management that supports loading external configuration files via the include directive. An arbitrary file read vulnerability exists in OpenClaw. An attacker can use this vulnerability to read sensitive files, such as API keys and credentials, outside of the...

6.7CVSS5.9AI score0.00146EPSS

NVD•added 2026/03/11 2:16 p.m.•2 views

CVE-2026-32061

OpenClaw versions prior to 2026.2.17 contain a path traversal vulnerability in the $include directive resolution that allows reading arbitrary local files outside the config directory boundary. Attackers with config modification capabilities can exploit this by specifying absolute paths, traversa...

6.7CVSS0.00146EPSS

OSV•added 2026/03/11 2:16 p.m.•2 views

CVE-2026-32061

6.7CVSS5.9AI score