Monitor vulnerabilities that affect your stack. Sign up free to get alerts when software you use is affected.

CVE Vulnerabilities - 5 March 2026

RSS

523 vulnerabilities published on 5 March 2026

Severity:
Bazinga: Remote attackers can access local files on your server
CVE-2026-28084
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Bazinga bazinga allo...
8.1
ThemeREX Windsor allows attackers to read sensitive files on server
CVE-2026-28081
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Windsor windsor allo...
8.1
Conquerors Theme: Files from Your Computer Can Be Accessed
CVE-2026-28079
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Conquerors conque...
8.1
Vapester Software Allows Access to Local Files
CVE-2026-28077
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Vapester vapester al...
8.1
Le Truffe Theme Allows Attacker to Access Local Files
CVE-2026-28069
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Le Truffe letruffe a...
8.1
ThemeREX Rhythmo Allows Access to Local Files
CVE-2026-28068
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Rhythmo rhythmo allo...
8.1
ThemeREX Bassein allows attackers to access local files via malicious URL
CVE-2026-28067
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Bassein bassein allo...
8.1
ThemeREX Legrand legrand: Malicious Files Can Be Accessed
CVE-2026-28066
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Legrand legrand allo...
8.1
Eject Theme: Hackers Can Access Local Files
CVE-2026-28065
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Eject eject allows P...
8.1
ThemeREX Edge Decor: Malicious Files Can Be Accessed
CVE-2026-28064
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Edge Decor edge-deco...
8.1
ThemeREX Asia Garden allows hackers to access local files
CVE-2026-28063
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Asia Garden asia-gar...
8.1
Happy Baby Theme Allows Attackers to Access Local Files
CVE-2026-28062
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Happy Baby happy-bab...
8.1
ThemeREX Tiger Claw allows attackers to access local files
CVE-2026-28061
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Tiger Claw tiger-cla...
8.1
S.King Theme Allows Malicious File Access
CVE-2026-28060
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX S.King stephanie-kin...
8.1
Dermatology Clinic Theme Allows Attacker to Access Local Files
CVE-2026-28059
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Dermatology Clinic d...
8.1
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Dixon dixon allows PHP Local File Inclusion.This issue affects Dixo...
CVE-2026-28058
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Dixon dixon allows P...
8.1
ThemeREX Mandala Allows Malicious File Access
CVE-2026-28057
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Mandala mandala allo...
8.1
MCKinney's Politics Theme Allows Access to Local Files
CVE-2026-28056
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX MCKinney's Politics ...
8.1
PHP File Inclusion Vulnerability in ThemeREX M.Williamson Allows Attackers to Access Local Files
CVE-2026-28055
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX M.Williamson william...
8.1
ThemeREX Legal Stone allows hackers to access local files
CVE-2026-28054
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Legal Stone legal-st...
8.1
ThemeREX Miller: Malicious Files Can Be Loaded on Your Website
CVE-2026-28053
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Miller christine-mil...
8.1
ThemeREX Peter Mason allows attackers to access sensitive files
CVE-2026-28052
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Peter Mason petermas...
8.1
Yacht Rental website allows hackers to access sensitive files
CVE-2026-28051
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Yacht Rental yacht-r...
8.1
Beacon ThemeREX: Malicious Files Can Be Served
CVE-2026-28050
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Beacon beacon allows...
8.1
ThemeREX Police Department exposes sensitive files due to insecure PHP settings
CVE-2026-28049
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Police Department po...
8.1
4 Mar 2026 All days 6 Mar 2026