Donate Telegram

CVE-2026-27336

NONE EPSS 0.17%

Mar 05, 2026

Updated Mar 05, 2026

WordPress

Parameter	Value
Type	CWE-98
Vendor	WordPress
Public PoC	No

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Consultor | Consulting, Accounting & Legal Counsel WordPress Theme consultor allows PHP Local File Inclusion.This issue affects Consultor | Consulting, Accounting & Legal Counsel WordPress Theme: from n/a through <= 1.2.4.

Weakness Type (CWE)

References 1

https://patchstack.com/database/Wordpress/Theme/consultor/vulnerability/wordpre…

audit@patchstack.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-6439

WordPress

CVE-2026-6451

WordPress

CVE-2026-40308

WordPress

CVE-2026-3830

Unknown

CVE-2026-5809

WordPress

CVE Details

CVE ID

CVE-2026-27336

Published Date

Mar 05, 2026

Vendor

WordPress

Severity

NONE

Exploit Prediction (EPSS)

Probability of Exploit 0.17%

Likelihood of exploitation in next 30 days

Percentile: 37.2th percentile (higher than 37.2% of all CVEs)

Standard patching cycle

Impact

Minimal impact

Source

Editor's Choice