CVE-2026-22513 in AncoraThemes Triompher Plugin
Summary
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Triompher triompher allows PHP Local File Inclusion.This issue affects Triompher: from n/a through <= 1.1.0.
Responsible
Patchstack
Reservation
01/07/2026
Disclosure
03/25/2026
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 353209 | AncoraThemes Triompher Plugin filename control | 98 | Not defined | Not defined | CVE-2026-22513 |