CVE-2026-27985

Name of the Vulnerable Software and Affected Versions ThemeREX Humanum versions through 1.1.4

Description The software contains a flaw related to improper control of filename handling for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of local files within the application.

Recommendations Update ThemeREX Humanum to a version newer than 1.1.4.