CVE-2026-32400

Name of the Vulnerable Software and Affected Versions ThemetechMount Boldman versions through 7.7

Description The software contains a flaw related to improper control of filename handling for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File Inclusion. The vulnerability exists due to insufficient sanitization of filenames used in include/require operations, potentially allowing an attacker to include arbitrary files.

Recommendations Update ThemetechMount Boldman to a version newer than 7.7.