CVE-2026-22403

Name of the Vulnerable Software and Affected Versions Mikado-Themes Innovio versions through 1.7

Description A flaw exists in Mikado-Themes Innovio that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue is related to PHP Remote File Inclusion.

Recommendations Update Innovio to a version greater than 1.7.