Search Vulnerabilities

WordPress Cookiteer theme <= 1.4.8 - Local File Inclusion vulnerability

CVE-2025-69369

WordPress Racquet theme <= 1.12.0 - Local File Inclusion vulnerability

CVE-2025-58897

WordPress Fermentio theme <= 1.5.0 - Local File Inclusion vulnerability

CVE-2025-58707

WordPress Spin theme <= 1.8 - Local File Inclusion vulnerability

CVE-2026-39553

WordPress WaveRide theme <= 1.4 - Local File Inclusion vulnerability

CVE-2026-39552

WordPress Blueprint theme < 1.1.5 - Local File Inclusion vulnerability

CVE-2025-58705

WordPress Crafti theme <= 1.12 - Local File Inclusion vulnerability

CVE-2025-58024

WordPress Accordion FAQ Plugin <= 2.2.1 - Local File Inclusion Vulnerability

CVE-2025-53440

WordPress Confidant theme <= 1.4 - Local File Inclusion vulnerability

CVE-2026-44239

FreePBX: Authenticated Local File Inclusion in Dashboard Module

CVE-2026-9559

A path traversal vulnerability exists in the campaign import feature of Mautic 7

CVE-2026-48972

WordPress SeedProd Pro plugin < 6.19.5 - Local File Inclusion vulnerability

CVE-2026-9200

Query Shortcode <= 0.2.1 - Authenticated (Contributor+) Local File Inclusion via 'lens' Shortcode Attribute

CVE-2026-48133

Identity Awareness Captive Portal - Unauthenticated Local File Inclusion

CVE-2026-39661

WordPress SW Core plugin <= 1.7.18 - Local File Inclusion vulnerability

CVE-2026-8134

Concrete CMS 9.5.0 and below is vulnerable to Authenticated RCE via Composer customTemplate Path Traversal leading to PHP File Inclusion

May 21, 2026

CVE-2026-39850

Yii 2: Local file inclusion via view parameter name collision

CVE-2026-7522

Advanced Database Cleaner – Premium <= 4.1.0 - Authenticated (Subscriber+) Local File Inclusion via 'template'

CVE-2018-25329

WordPress Plugin WP with Spritz 1.0 Remote File Inclusion

CVE-2018-25324

MEDIUM

Simple Fields 0.2-0.3.5 Local File Inclusion via wp_abspath

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2025-68886

WordPress Cookiteer theme <= 1.4.8 - Local File Inclusion vulnerability

CVE-2025-69369

WordPress Racquet theme <= 1.12.0 - Local File Inclusion vulnerability

CVE-2025-58897

WordPress Fermentio theme <= 1.5.0 - Local File Inclusion vulnerability

CVE-2025-58707

WordPress Spin theme <= 1.8 - Local File Inclusion vulnerability

CVE-2026-39553

WordPress WaveRide theme <= 1.4 - Local File Inclusion vulnerability

CVE-2026-39552

WordPress Blueprint theme < 1.1.5 - Local File Inclusion vulnerability

CVE-2025-58705

WordPress Crafti theme <= 1.12 - Local File Inclusion vulnerability

CVE-2025-58024

WordPress Accordion FAQ Plugin <= 2.2.1 - Local File Inclusion Vulnerability

CVE-2025-53440

WordPress Confidant theme <= 1.4 - Local File Inclusion vulnerability

CVE-2026-44239

FreePBX: Authenticated Local File Inclusion in Dashboard Module

CVE-2026-9559

A path traversal vulnerability exists in the campaign import feature of Mautic 7

CVE-2026-48972

WordPress SeedProd Pro plugin < 6.19.5 - Local File Inclusion vulnerability

CVE-2026-9200

Query Shortcode <= 0.2.1 - Authenticated (Contributor+) Local File Inclusion via 'lens' Shortcode Attribute

CVE-2026-48133

Identity Awareness Captive Portal - Unauthenticated Local File Inclusion

CVE-2026-39661

WordPress SW Core plugin <= 1.7.18 - Local File Inclusion vulnerability

CVE-2026-8134

Concrete CMS 9.5.0 and below is vulnerable to Authenticated RCE via Composer customTemplate Path Traversal leading to PHP File Inclusion

May 21, 2026

CVE-2026-39850

Yii 2: Local file inclusion via view parameter name collision

CVE-2026-7522

Advanced Database Cleaner – Premium <= 4.1.0 - Authenticated (Subscriber+) Local File Inclusion via 'template'

CVE-2018-25329

WordPress Plugin WP with Spritz 1.0 Remote File Inclusion

CVE-2018-25324

MEDIUM

Simple Fields 0.2-0.3.5 Local File Inclusion via wp_abspath