Select-Themes WaveRide Vulnerable To PHP Remote File Inclusion
A critical security vulnerability, EUVD-2026-33916, has been identified in the WaveRide product by Select-Themes. The flaw, rated 8.1/10 on the CVSS v3.1 scale, involves Improper Control of Filename for Include/Require Statement in PHP Programs.
Topics
Developing
- 883d Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore.
- 883d Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur.
- 883d Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est.
- 883d Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium.
Sources · 7 independent
Mastodon
“🚨 EUVD-2026-33916📊 Score: 8.1/10 (CVSS v3.1)📦 Product: WaveRide🏢 Vendor: Select-Themes📅 Updated: 2026-06-02📝 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...”
Unlock the full story
Get a Pro subscription or above to see the live story progression and the full list of independent sources confirming each event as they happen.
Log in to upgrade