PT-2026-25239 · Creatives Planet · Greenly Theme Addons

João Pedro S Alcântara

Published

2026-03-13

Updated

2026-03-14

CVE-2026-32393

CVSS v3.1

7.5

High

Vector

AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Creatives Planet Greenly Theme Addons versions prior to 8.2

Description A flaw exists in Creatives Planet Greenly Theme Addons that allows for PHP Local File Inclusion due to improper control of filename handling for include/require statements. This issue is related to a 'PHP Remote File Inclusion' type of vulnerability.

Recommendations Update Creatives Planet Greenly Theme Addons to version 8.2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-98

Related Identifiers

CVE-2026-32393

Affected Products

Greenly Theme Addons

PT-2026-25239 · Creatives Planet · Greenly Theme Addons

CVE-2026-32393

Weakness Enumeration

Related Identifiers

Affected Products

References · 4