CVE-2026-27081

Name of the Vulnerable Software and Affected Versions Mikado-Themes Rosebud versions through 1.4

Description A flaw exists in the handling of filenames used in include/require statements within the PHP code of Mikado-Themes Rosebud, leading to a PHP Local File Inclusion issue. This allows for the inclusion of local files, potentially enabling unauthorized access or code execution.

Recommendations Versions prior to and including 1.4 should be updated. At the moment, there is no information about a newer version that contains a fix for this vulnerability.