Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
EmojiNation Theme Allows Access to Sensitive Files
CVE-2026-28029
Summary
A security issue in EmojiNation, a theme for websites, allows hackers to access sensitive files on the server. This could lead to data theft or disruption of the website. Update to the latest version, 1.0.13 or later.
Original title
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX EmojiNation emojination allows PHP Local File Inclusion.This issue ...
Original description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX EmojiNation emojination allows PHP Local File Inclusion.This issue affects EmojiNation: from n/a through <= 1.0.12.
nvd CVSS3.1
8.1
Vulnerability type
CWE-98
Improper Control of Filename for Include
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026