AncoraThemes CloudMe allows hackers to access local files

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.1

AncoraThemes CloudMe allows hackers to access local files

CVE-2026-22433

Summary

The AncoraThemes CloudMe software has a security issue that could allow attackers to access and view any local files on a computer. This is a serious problem because it could lead to sensitive information being exposed. To stay safe, update CloudMe to the latest version or consider replacing it with a more secure alternative.

Original title

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes CloudMe cloudme allows PHP Local File Inclusion.This issue affe...

Original description

Vulnerability type

CWE-98 Improper Control of Filename for Include

https://patchstack.com/database/Wordpress/Theme/cloudme/vulnerability/wordpress-...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026