Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
Yacht Rental website allows hackers to access sensitive files
CVE-2026-28051
Summary
A security issue in Yacht Rental's website could allow hackers to access files on the server. This could potentially reveal sensitive information or allow malicious code to run. The website's administrators should update to a newer version of the affected software to fix the issue.
Original title
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Yacht Rental yacht-rental allows PHP Local File Inclusion.This issu...
Original description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Yacht Rental yacht-rental allows PHP Local File Inclusion.This issue affects Yacht Rental: from n/a through <= 2.6.
nvd CVSS3.1
8.1
Vulnerability type
CWE-98
Improper Control of Filename for Include
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026