CVE-2026-32503 - Vulnerability Analysis

Overview

CreativeWS Trendustry <= 1.1.4 contains a local file inclusion caused by improper control of filename in include/require statements, letting attackers include local files, exploit requires crafted input.

Severity & Score

Impact

Attackers can include local files, potentially leading to information disclosure or code execution.

Mitigation

Update to the latest version beyond 1.1.4.

References

• https://patchstack.com/database/Wordpress/Theme/trendustry/vulnerability/wordpress-trendustry-theme-1-1-4-local-file-inclusion-vulnerability?_s_id=cve

Related Resources

• Vulnerability Intelligence Dashboard
• Credential Scanner