Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
Fooddy theme allows attackers to read local files
CVE-2026-22373
Summary
The Fooddy theme for websites has a security flaw that allows hackers to access and read files on the website's server. This is a concern because it could allow an attacker to access sensitive information. To stay safe, update the Fooddy theme to the latest version.
Original title
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Fooddy fooddy allows PHP Local File Inclusion.This issue affect...
Original description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Fooddy fooddy allows PHP Local File Inclusion.This issue affects Fooddy: from n/a through <= 1.3.10.
nvd CVSS3.1
8.1
Vulnerability type
CWE-98
Improper Control of Filename for Include
Published: 20 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026