CVE-2026-27093 | Ovatheme Tripgo Plugin up to 1.5.5 on WordPress filename control

Inserito da Angelo Barbosa | Mar 19, 2026 | CVE

A vulnerability categorized as problematic has been discovered in Ovatheme Tripgo Plugin up to 1.5.5 on WordPress. This issue affects some unknown processing. Such manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is traded as CVE-2026-27093. The attack may be launched remotely. There is no exploit available.

It is advisable to upgrade the affected component.

CVE-2026-27093 | Ovatheme Tripgo Plugin up to 1.5.5 on WordPress filename control

Post correlati

CVE-2025-9962 | Novakon P V2001.A.c518o2 buffer overflow

CVE-2024-54664 | Veritas NetBackup up to 10.4 on Windows Local Privilege Escalation

CVE-2025-1417 | Proget Konsola MDM up to 2.17.4 Mobile Device Management authorization

CVE-2024-6635 | WooCommerce Social Login Plugin up to 2.7.3 on WordPress improper authentication