CVE-2026-22496

Name of the Vulnerable Software and Affected Versions AncoraThemes Hypnotherapy versions through 1.2.10

Description The software contains a flaw related to improper control of filename handling for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File Inclusion.

Recommendations Update AncoraThemes Hypnotherapy to a version later than 1.2.10.