Freeio Website Allows Hackers to Access Local Files

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Freeio Website Allows Hackers to Access Local Files

CVE-2026-39679

Summary

A vulnerability in Freeio, a website template, allows attackers to access sensitive local files. This means that if an attacker can trick the website into including a malicious file, they can access and potentially steal sensitive information. Update to the latest version of Freeio to fix this issue.

Original title

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ApusTheme Freeio freeio allows PHP Local File Inclusion.This issue affects F...

Original description

Vulnerability type

CWE-98 Improper Control of Filename for Include

https://patchstack.com/database/Wordpress/Theme/freeio/vulnerability/wordpress-f...

Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026