Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1618 matches found

NVD
NVDadded 2026/01/22 5:16 p.m.1 views

CVE-2025-68510

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeGoods Photography photography allows PHP Local File Inclusion.This issue affects Photography: from n/a through 7.7.5...

8.1CVSS0.00222EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:16 p.m.1 views

CVE-2025-67946

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in scriptsbundle AdForest adforest allows PHP Local File Inclusion.This issue affects AdForest: from n/a through = 6.0.11...

8.1CVSS0.00222EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:16 p.m.2 views

CVE-2025-67941

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes The Aisle theaisle allows PHP Local File Inclusion.This issue affects The Aisle: from n/a through 2.9.1...

8.1CVSS0.00222EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:16 p.m.1 views

CVE-2025-67940

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Powerlift powerlift allows PHP Local File Inclusion.This issue affects Powerlift: from n/a through 3.2.1...

8.1CVSS0.00222EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:16 p.m.1 views

CVE-2025-67616

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme Mella mella allows PHP Local File Inclusion.This issue affects Mella: from n/a through = 1.2.29...

8.1CVSS0.00222EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:15 p.m.2 views

CVE-2025-63017

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS0.00067EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:15 p.m.1 views

CVE-2025-54003

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Depot depot allows PHP Local File Inclusion.This issue affects Depot: from n/a through = 1.16...

8.1CVSS0.00222EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:15 p.m.2 views

CVE-2025-49994

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme Athens athens allows PHP Local File Inclusion.This issue affects Athens: from n/a through = 1.1.6...

8.1CVSS0.00222EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:15 p.m.3 views

CVE-2025-47474

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ninetheme Anarkali anarkali allows PHP Local File Inclusion.This issue affects Anarkali: from n/a through = 1.0.9...

8.1CVSS0.00066EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/01/22 4:52 p.m.1 views

CVE-2026-24390 WordPress Kentha Elementor Widgets plugin < 3.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in QantumThemes Kentha Elementor Widgets kentha-elementor allows PHP Local File Inclusion.This issue affects Kentha Elementor Widgets: from n/a through 3.1...

7.5CVSS5.9AI score0.0022EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.1 views

CVE-2026-23978

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Softwebmedia Gyan Elements gyan-elements allows PHP Local File Inclusion.This issue affects Gyan Elements: from n/a through = 2.2.1...

9.8CVSS5.4AI score0.00203EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.1 views

CVE-2026-22464

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in wphocus My auctions allegro my-auctions-allegro-free-edition allows PHP Local File Inclusion.This issue affects My auctions allegro: from n/a through = 3.6.33...

7.5CVSS5.4AI score0.00067EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.1 views

CVE-2026-22402

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in pavothemes Triply triply allows PHP Local File Inclusion.This issue affects Triply: from n/a through = 2.4.7...

7.5CVSS5.4AI score0.0022EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.1 views

CVE-2026-22401

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in pavothemes Freshio freshio allows PHP Local File Inclusion.This issue affects Freshio: from n/a through = 2.4.2...

7.5CVSS5.4AI score0.0022EPSS
Exploits0References2
CVE
CVEadded 2026/01/22 4:52 p.m.7 views

CVE-2026-22402

CVE-2026-22402 describes an improper filename control in the WordPress theme Triply (Triply Tour Booking) that enables PHP Local File Inclusion (LFI) via include/require. Affected: Triply versions from n/a through 2.4.7. Root cause: improper validation of included file paths, allowing an attacker...

7.5CVSS5.5AI score0.0022EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/22 4:52 p.m.13 views

CVE-2025-69314 WordPress Werkstatt theme < 4.8.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes Werkstatt werkstatt allows PHP Local File Inclusion.This issue affects Werkstatt: from n/a through 4.8.3...

8.1CVSS0.00222EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.2 views

CVE-2025-69314

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes Werkstatt werkstatt allows PHP Local File Inclusion.This issue affects Werkstatt: from n/a through 4.8.3...

8.1CVSS5.3AI score0.00222EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.1 views

CVE-2025-69078

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Malta malta allows PHP Local File Inclusion.This issue affects Malta: from n/a through = 1.3.3...

8.1CVSS5.3AI score0.00066EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.3 views

CVE-2025-69077

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Hobo hobo allows PHP Local File Inclusion.This issue affects Hobo: from n/a through = 1.0.10...

8.1CVSS5.3AI score0.00222EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.2 views

CVE-2025-69071

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes TanTum tantum allows PHP Local File Inclusion.This issue affects TanTum: from n/a through = 1.1.13...

8.1CVSS5.3AI score0.00066EPSS
Exploits0References2
Rows per page
Query Builder