CVE-2026-28121

Name of the Vulnerable Software and Affected Versions AncoraThemes Anderson versions through 1.4.2

Description The software contains a flaw related to improper control of filenames used in include/require statements, potentially leading to PHP Local File Inclusion. The issue is present in AncoraThemes Anderson andersonclinic.

Recommendations Update AncoraThemes Anderson to a version later than 1.4.2.