CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added yesterday•3 views

CVE-2026-48972

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in SeedProd LLC SeedProd Pro allows PHP Local File Inclusion. This issue affects SeedProd Pro: from n/a before 6.19.5...

7.5CVSS5.5AI score0.00127EPSS

ATTACKERKB•added 4 days ago•6 views

CVE-2026-39553

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Select-Themes WaveRide allows PHP Local File Inclusion. This issue affects WaveRide: from n/a through 1.4...

8.1CVSS5.8AI score0.00115EPSS

CVE•added 4 days ago•12 views

CVE-2025-53440

CVE-2025-53440 describes a Local File Inclusion in the WordPress Confidant theme (versions <= 1.4) due to improper control of the filename for include/require in PHP. Affected component: Confidant WordPress theme. Root cause: PHP Local File Inclusion vulnerability enabling access to local file...

8.1CVSS5.8AI score0.00115EPSS

Positive Technologies•added 4 days ago•10 views

PT-2026-45743

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Racquet allows PHP Local File Inclusion. This issue affects Racquet: from n/a through 1.12.0...

8.1CVSS5.8AI score0.00115EPSS

RedhatCVE•added 2026/04/10 1:22 a.m.•1 views

CVE-2026-39623

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in kutethemes Biolife biolife allows PHP Local File Inclusion.This issue affects Biolife: from n/a through = 3.2.3...

7.5CVSS5.9AI score0.00147EPSS

NVD•added 2026/04/08 9:16 a.m.•2 views

CVE-2026-39613

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in kutethemes Boutique kute-boutique allows PHP Local File Inclusion.This issue affects Boutique: from n/a through = 2.3.3...

7.5CVSS0.00147EPSS

RedhatCVE•added 2026/03/26 5:3 p.m.•0 views

CVE-2026-25379

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jwsthemes StreamVid streamvid allows PHP Local File Inclusion.This issue affects StreamVid: from n/a through 6.8.6...

RedhatCVE•added 2026/03/26 5:2 p.m.•2 views

CVE-2026-27079

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Amfissa amfissa allows PHP Local File Inclusion.This issue affects Amfissa: from n/a through = 1.1...

EUVD•added 2026/03/25 6:31 p.m.•1 views

EUVD-2026-15856

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativeWS Trendustry trendustry allows PHP Local File Inclusion.This issue affects Trendustry: from n/a through = 1.1.4...

5.8AI score0.00056EPSS

NVD•added 2026/03/25 5:17 p.m.•0 views

CVE-2026-32503

8.1CVSS0.00056EPSS

NVD•added 2026/03/25 5:16 p.m.•1 views

CVE-2026-27077

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes MultiOffice multioffice allows PHP Local File Inclusion.This issue affects MultiOffice: from n/a through = 1.2...

8.1CVSS0.00172EPSS

NVD•added 2026/03/25 5:16 p.m.•1 views

CVE-2026-27047

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Curly Core curly-core allows PHP Local File Inclusion.This issue affects Curly Core: from n/a through = 2.1.6...

8.1CVSS0.00172EPSS

ATTACKERKB•added 2026/03/25 4:15 p.m.•1 views

CVE-2026-32500

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CreativeWS MetaMax metamax allows PHP Local File Inclusion.This issue affects MetaMax: from n/a through = 1.1.4...

5.8AI score0.00172EPSS

Positive Technologies•added 2026/03/25 12:0 a.m.•1 views

PT-2026-27980

Name of the Vulnerable Software and Affected Versions Mikado-Themes Rosebud versions through 1.4 Description A flaw exists in the handling of filenames used in include/require statements within the PHP code of Mikado-Themes Rosebud, leading to a PHP Local File Inclusion issue. This allows for the...

8.1CVSS5.9AI score0.00172EPSS

Exploits0References3

CVE•added 2026/03/13 11:42 a.m.•5 views

CVE-2026-32392

CVE-2026-32392 affects the WordPress Greenly theme (<= 8.1). The issue is an improper control of filename for PHP include/require, enabling PHP Local File Inclusion (LFI) due to PHP Remote File Inclusion behavior. Connected sources (Red Hat, NVD, CVE lists, EUVD) corroborate the same descripti...

7.5CVSS5.8AI score0.0017EPSS

RedhatCVE•added 2026/03/06 7:55 a.m.•3 views

CVE-2026-27992

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Meals & Wheels meals-wheels allows PHP Local File Inclusion.This issue affects Meals & Wheels: from n/a through = 1.1.12...

RedhatCVE•added 2026/03/06 7:55 a.m.•1 views

CVE-2026-27987

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX The Qlean the-qlean allows PHP Local File Inclusion.This issue affects The Qlean: from n/a through = 2.12...

RedhatCVE•added 2026/03/06 7:55 a.m.•5 views

CVE-2026-27097

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes CasaMia | Property Rental Real Estate WordPress Theme casamia allows PHP Local File Inclusion.This issue affects CasaMia | Property Rental Real Estate WordPress Them...

8.1CVSS5.8AI score0.00056EPSS

Exploits1References1

RedhatCVE•added 2026/03/06 7:54 a.m.•1 views

CVE-2026-27997

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Maxify maxify allows PHP Local File Inclusion.This issue affects Maxify: from n/a through = 1.0.16...