CVE-2026-32537 in Visual Portfolio, Photo Gallery & Post Grid Plugininfo

Summary

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nK Visual Portfolio, Photo Gallery & Post Grid visual-portfolio allows PHP Local File Inclusion.This issue affects Visual Portfolio, Photo Gallery & Post Grid: from n/a through <= 3.5.1.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsible

Patchstack

Reservation

03/12/2026

Disclosure

03/25/2026

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
353392	nK Visual Portfolio, Photo Gallery & Post Grid Plugin filename control	98	Not defined	Not defined	CVE-2026-32537

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!