Aggregates CVE and security vulnerability intelligence across all ancorathemes-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk file inclusion; exposure may include vendor impact file overwrite and vendor impact unauthorized access in vendor surface production workloads contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-58901 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Takeout takeout allows PHP Local File Inclusion.This issue affects Takeout: from n/a through <= 1.3.0. | [email protected] | 8.1 | 0.11% | 2025-12-18 | 2026-01-20 |
| CVE-2025-58900 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes UniTravel unitravel allows PHP Local File Inclusion.This issue affects UniTravel: from n/a through <= 1.4.2. | [email protected] | 8.1 | 0.15% | 2025-12-18 | 2026-01-20 |
| CVE-2025-58899 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Frame frame allows PHP Local File Inclusion.This issue affects Frame: from n/a through <= 2.4.0. | [email protected] | 8.1 | 0.11% | 2025-12-18 | 2026-01-20 |
| CVE-2025-58898 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes HealthHub healthhub allows PHP Local File Inclusion.This issue affects HealthHub: from n/a through <= 1.3.0. | [email protected] | 8.1 | 0.22% | 2025-12-18 | 2026-04-27 |
| CVE-2025-58896 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Otaku otaku allows PHP Local File Inclusion.This issue affects Otaku: from n/a through <= 1.8.0. | [email protected] | 8.1 | 0.22% | 2025-12-18 | 2026-04-27 |
| CVE-2025-58895 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Integro integro allows PHP Local File Inclusion.This issue affects Integro: from n/a through <= 1.8.0. | [email protected] | 8.1 | 0.11% | 2025-12-18 | 2026-04-27 |
| CVE-2025-58892 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Tourimo tourimo allows PHP Local File Inclusion.This issue affects Tourimo: from n/a through <= 1.2.3. | [email protected] | 8.1 | 0.11% | 2025-12-18 | 2026-04-27 |
| CVE-2025-58891 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Sanger sanger allows PHP Local File Inclusion.This issue affects Sanger: from n/a through <= 1.24.0. | [email protected] | 8.1 | 0.11% | 2025-12-18 | 2026-04-27 |
| CVE-2025-58890 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Playful playful allows PHP Local File Inclusion.This issue affects Playful: from n/a through <= 1.19.0. | [email protected] | 8.1 | 0.11% | 2025-12-18 | 2026-04-27 |
| CVE-2025-58888 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes The Flash theflash allows PHP Local File Inclusion.This issue affects The Flash: from n/a through <= 1.15. | [email protected] | 8.1 | 0.22% | 2025-12-18 | 2026-04-27 |
| CVE-2025-58885 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Pathfinder pathfinder allows PHP Local File Inclusion.This issue affects Pathfinder: from n/a through <= 1.16. | [email protected] | 8.1 | 0.22% | 2025-12-18 | 2026-04-27 |
| CVE-2025-58879 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Festy festy allows PHP Local File Inclusion.This issue affects Festy: from n/a through <= 1.13.0. | [email protected] | 8.1 | 0.11% | 2025-12-18 | 2026-04-27 |