CVE-2025-69398 WordPress Plank theme <= 1.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Plank plank allows PHP Local File Inclusion.This issue affects Plank: from n/a through = 1.7...

CVE-2026-27343 WordPress Airtifact theme <= 1.2.91 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in VanKarWai Airtifact airtifact allows PHP Local File Inclusion.This issue affects Airtifact: from n/a through = 1.2.91...

Exploit for CVE-2026-30480

CVE-2026-30480: LibreNMS Local File Inclusion LFI via Path T...

CVE-2025-69046 WordPress iRecco Core plugin <= 1.3.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WebGeniusLab iRecco Core irecco-core allows PHP Local File Inclusion.This issue affects iRecco Core: from n/a through = 1.3.6...

CVE-2025-69043 WordPress Rashy theme <= 1.1.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in goalthemes Rashy rashy allows PHP Local File Inclusion.This issue affects Rashy: from n/a through = 1.1.3...

CVE-2025-68913 WordPress Miion theme <= 1.2.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in zozothemes Miion miion allows PHP Local File Inclusion.This issue affects Miion: from n/a through = 1.2.7...

PT-2026-4029

Name of the Vulnerable Software and Affected Versions AdForest versions through 6.0.11 Description A flaw exists in AdForest that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue is related to a PHP Remote File Inclusion...

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : Apache HTTP Server vulnerabilities (USN-7968-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7968-1 advisory. It was discovered that the Apache HTTP Server incorrectly handled failed ACME certificate renewals. This could result in renewal...

CVE-2025-67925

CVE-2025-67925: Corpkit (ZozoThemes Corpkit WordPress theme) &lt;= 2.0 authenticated Local File Inclusion via include/require, enabling PHP Local File Inclusion. Root cause: improper handling of file paths in Corpkit; impact: arbitrary local file access. Affected Software: Corpkit - Business Cons...

TencentOS Server 3: httpd:2.4 (TSSA-2025:0973)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0973 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

EUVD-2025-204219

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Emberlyn emberlyn allows PHP Local File Inclusion.This issue affects Emberlyn: from n/a through = 1.3.1...

CVE-2025-60067

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Giardino giardino allows PHP Local File Inclusion.This issue affects Giardino: from n/a through = 1.1.10...

CVE-2025-60064

CVE-2025-60064 describes a PHP Local File Inclusion in the WordPress Renewal theme (versions &lt;= 1.2.2) due to improper control of filenames for include/require. The issue affects Renewal; CVSS 3.1 base score 8.1 (HIGH) with network attack vector, no privileges required, user interaction requir...

CVE-2025-60042 WordPress Chinchilla theme <= 1.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Chinchilla chinchilla allows PHP Local File Inclusion.This issue affects Chinchilla: from n/a through = 1.16...

CVE-2025-60043 WordPress Wanderic theme <= 1.0.10 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Wanderic wanderic allows PHP Local File Inclusion.This issue affects Wanderic: from n/a through = 1.0.10...

CVE-2025-60042

The CVE-2025-60042 entry concerns the AncoraThemes/WordPress Chinchilla theme (versions up to 1.16). The vulnerability is described as an Improper Control of Filename for Include/Require Statement (PHP Local File Inclusion), enabling an attacker to include local files via PHP includes. Connected ...

CVE-2025-58947

The CVE-2025-58947 entry describes a Local File Inclusion (LFI) vulnerability in the WordPress Athos theme (Athos) affecting versions from unspecified through

CVE-2025-58937

CVE-2025-58937 corresponds to a Local File Inclusion in the WordPress Tacticool theme (

CVE-2025-58892 WordPress Tourimo theme <= 1.2.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Tourimo tourimo allows PHP Local File Inclusion.This issue affects Tourimo: from n/a through = 1.2.3...

CVE-2025-53436 WordPress Monki theme <= 2.0.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme Monki monki allows PHP Local File Inclusion.This issue affects Monki: from n/a through = 2.0.5...