CVE-2026-28084

Name of the Vulnerable Software and Affected Versions ThemeREX Bazinga versions through 1.1.9

Description The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Local File Inclusion. This allows for the inclusion of local files.

Recommendations Update ThemeREX Bazinga to a version later than 1.1.9.