CVE-2026-22514

Name of the Vulnerable Software and Affected Versions AncoraThemes Unica versions through 1.4.1

Description The software contains a flaw related to improper control of filename handling for include/require statements, leading to a PHP Remote File Inclusion issue. This allows for PHP Local File Inclusion.

Recommendations Update AncoraThemes Unica to a version later than 1.4.1.