Aqualots CVEs and Security Vulnerabilities

Filtered by vendor Themerex Subscriptions

Filtered by product Aqualots Subscriptions

Switch to Advanced Search (Beta)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-28088	2 Themerex, Wordpress	2 Aqualots, Wordpress	2026-03-06	8.1 High
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Aqualots aqualots allows PHP Local File Inclusion.This issue affects Aqualots: from n/a through <= 1.1.6.

Page 1 of 1.