Monitor vulnerabilities that affect your stack. Sign up free to get alerts when software you use is affected.

CVE Vulnerabilities - 5 March 2026

RSS

523 vulnerabilities published on 5 March 2026

Severity:
FlashMart Store Website Allows Unwanted Access to Local Files
CVE-2026-28048
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech FlashMart flashmart...
8.1
VicTo Software Allows Hackers to Access Local Files
CVE-2026-28047
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in magentech Victo victo allows ...
8.1
ThemeREX Law Office allows attackers to read local files
CVE-2026-28046
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Law Office law-offic...
8.1
ThemeREX N7 Golf Club Sports & Events Can Access Local Files
CVE-2026-28045
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX N7 | Golf Club Sport...
8.1
Grit PHP Theme Allows Access to Local Files
CVE-2026-28041
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Grit grit allows...
8.1
ThemeREX Printy: Malicious Files Can Be Injected
CVE-2026-28035
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Printy printy allows...
8.1
ThemeREX Progress Allows Malicious File Access
CVE-2026-28034
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Progress progress al...
8.1
ThemeREX Edifice Allows Attackers to Access Local Files
CVE-2026-28033
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Edifice edifice allo...
8.1
ThemeREX Tuning PHP File Inclusion Attack Risk
CVE-2026-28032
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Tuning tuning allows...
8.1
PHP File Inclusion Bug in ThemeREX Invetex: Privilege Escalation
CVE-2026-28031
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Invetex invetex allo...
8.1
ThemeREX Bonbon Allows Hacking Attack via Local File Access
CVE-2026-28030
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Bonbon bonbon allows...
8.1
EmojiNation Theme Allows Access to Sensitive Files
CVE-2026-28029
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX EmojiNation emojinat...
8.1
MoneyFlow ThemeREX MoneyFlow allows attackers to read local files
CVE-2026-28028
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX MoneyFlow moneyflow ...
8.1
ThemeREX Kayon allows hackers to read sensitive files on the server
CVE-2026-28027
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Kayon kayon allows P...
8.1
Motorix Theme: Malicious Files Can Be Accessed
CVE-2026-28026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Motorix motorix allo...
8.1
ThemeREX Stargaze: Malicious Files Can Be Loaded
CVE-2026-28025
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Stargaze stargaze al...
8.1
Helion PHP Files Can Read Local Files
CVE-2026-28024
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Helion helion all...
8.1
ThemeREX Nuts: Hackers can access your files through its settings.
CVE-2026-28023
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Nuts nuts allows PHP...
8.1
ThemeREX Foodie allows hackers to read local files
CVE-2026-28022
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Foodie foodie allows...
8.1
Craftis Theme Can Access Your Server Files from the Internet
CVE-2026-28021
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Craftis craftis allo...
8.1
ThemeREX Chroma allows attackers to access sensitive files on your server
CVE-2026-28020
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Chroma chroma allows...
8.1
ThemeREX Manoir Allows Attackers to Access Local Files
CVE-2026-28019
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Manoir manoir allows...
8.1
ThemeREX Global Logistics allows hackers to access local files
CVE-2026-28018
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Global Logistics glo...
8.1
Green Thumb ThemeREX: Malicious files can be accessed through input
CVE-2026-28017
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Green Thumb greenthu...
8.1
Luxury Wine ThemeREX Luxury Wine: Malicious Files Can Be Accessed
CVE-2026-28016
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Luxury Wine luxury-w...
8.1
4 Mar 2026 All days 6 Mar 2026