Total CVEs

142,027

Critical Severity

3,943

High Severity

14,108

Last 7 Days

1,748
Quick preset (or use dates below)
Clear Filters
Showing 10,401 - 10,420 of 14,108 CVEs
CVE-2026-28049 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Police Department police-department allows PHP Local File Inclusion.This issue affects Police Department: from n/a through <= 2.17.

Vendor: ThemeREX
Product: Police Department
Published: Mar 05, 2026
Source: NVD
CVE-2026-28048 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech FlashMart flashmart allows PHP Local File Inclusion.This issue affects FlashMart: from n/a through <= 2.0.15.

Vendor: magentech
Product: FlashMart
Published: Mar 05, 2026
Source: NVD
CVE-2026-28047 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech Victo victo allows PHP Local File Inclusion.This issue affects Victo: from n/a through <= 1.4.16.

Vendor: magentech
Product: Victo
Published: Mar 05, 2026
Source: NVD
CVE-2026-28046 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Law Office law-office allows PHP Local File Inclusion.This issue affects Law Office: from n/a through <= 3.3.0.

Vendor: ThemeREX
Product: Law Office
Published: Mar 05, 2026
Source: NVD
CVE-2026-28045 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX N7 | Golf Club Sports & Events n7-golf-club allows PHP Local File Inclusion.This issue affects N7 | Golf Club Sports & Events: from n/a through <= 2....

Vendor: ThemeREX
Product: N7 | Golf Club Sports & Events
Published: Mar 05, 2026
Source: NVD
CVE-2026-28042 HIGH - 7.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Astoundify Listify listify allows Reflected XSS.This issue affects Listify: from n/a through <= 3.2.5.

Vendor: Astoundify
Product: Listify
Published: Mar 05, 2026
Source: NVD
CVE-2026-28041 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Grit grit allows PHP Local File Inclusion.This issue affects Grit: from n/a through <= 1.0.1.

Vendor: AncoraThemes
Product: Grit
Published: Mar 05, 2026
Source: NVD
CVE-2026-28039 HIGH - 7.5

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpDataTables wpDataTables wpdatatables allows PHP Local File Inclusion.This issue affects wpDataTables: from n/a through <= 6.5.0.1.

Vendor: wpDataTables
Product: wpDataTables
Published: Mar 05, 2026
Source: NVD
CVE-2026-28037 HIGH - 7.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ashanjay EventON eventon allows Reflected XSS.This issue affects EventON: from n/a through <= 4.9.12.

Vendor: ashanjay
Product: EventON
Published: Mar 05, 2026
Source: NVD
CVE-2026-28035 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Printy printy allows PHP Local File Inclusion.This issue affects Printy: from n/a through <= 1.8.

Vendor: ThemeREX
Product: Printy
Published: Mar 05, 2026
Source: NVD
CVE-2026-28034 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Progress progress allows PHP Local File Inclusion.This issue affects Progress: from n/a through <= 1.2.

Vendor: ThemeREX
Product: Progress
Published: Mar 05, 2026
Source: NVD
CVE-2026-28033 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Edifice edifice allows PHP Local File Inclusion.This issue affects Edifice: from n/a through <= 1.8.

Vendor: ThemeREX
Product: Edifice
Published: Mar 05, 2026
Source: NVD
CVE-2026-28032 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Tuning tuning allows PHP Local File Inclusion.This issue affects Tuning: from n/a through <= 1.3.

Vendor: ThemeREX
Product: Tuning
Published: Mar 05, 2026
Source: NVD
CVE-2026-28031 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Invetex invetex allows PHP Local File Inclusion.This issue affects Invetex: from n/a through <= 2.18.

Vendor: ThemeREX
Product: Invetex
Published: Mar 05, 2026
Source: NVD
CVE-2026-28030 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Bonbon bonbon allows PHP Local File Inclusion.This issue affects Bonbon: from n/a through <= 1.6.

Vendor: ThemeREX
Product: Bonbon
Published: Mar 05, 2026
Source: NVD
CVE-2026-28029 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX EmojiNation emojination allows PHP Local File Inclusion.This issue affects EmojiNation: from n/a through <= 1.0.12.

Vendor: ThemeREX
Product: EmojiNation
Published: Mar 05, 2026
Source: NVD
CVE-2026-28028 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX MoneyFlow moneyflow allows PHP Local File Inclusion.This issue affects MoneyFlow: from n/a through <= 1.0.

Vendor: ThemeREX
Product: MoneyFlow
Published: Mar 05, 2026
Source: NVD
CVE-2026-28027 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Kayon kayon allows PHP Local File Inclusion.This issue affects Kayon: from n/a through <= 1.3.

Vendor: ThemeREX
Product: Kayon
Published: Mar 05, 2026
Source: NVD
CVE-2026-28026 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Motorix motorix allows PHP Local File Inclusion.This issue affects Motorix: from n/a through <= 1.6.

Vendor: ThemeREX
Product: Motorix
Published: Mar 05, 2026
Source: NVD
CVE-2026-28025 HIGH - 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Stargaze stargaze allows PHP Local File Inclusion.This issue affects Stargaze: from n/a through <= 1.5.

Vendor: ThemeREX
Product: Stargaze
Published: Mar 05, 2026
Source: NVD