PT-2026-23286 · Themerex · Lingvico

·

CVE-2026-27996

·

Published

2026-03-05

·

Updated

2026-03-05

CVSS v3.1

8.1

High

VectorAV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions ThemeREX Lingvico versions prior to 1.0.15
Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of local files.
Recommendations Update ThemeREX Lingvico to version 1.0.15 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-27996

Affected Products

Lingvico