PT-2026-27832 · Elated Themes · Neobeat
Publicado
2026-03-25
·
Atualizado
2026-03-30
·
CVE-2026-22511
CVSS v3.1
8.1
Alta
| Vetor | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Elated-Themes NeoBeat versions n/a through 1.2
Description
A flaw exists in the handling of filenames used in include/require statements within a PHP program, specifically a PHP Local File Inclusion issue in Elated-Themes NeoBeat. This allows for the inclusion of local files. The vulnerable component is related to file inclusion processes. The
include and require statements are affected.Recommendations
Versions prior to 1.2 should be updated.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Neobeat