What is CVE-2026-28079?

CVE-2026-28079 is a high-severity vulnerability in Axiomthemes Conquerors that allows for PHP Local File Inclusion. Organizations using affected versions should prioritize patching to mitigate potential risks.

What is the severity of CVE-2026-28079?

CVE-2026-28079 has a severity rating of HIGH with a CVSS base score of 8.1.

CVE-2026-28079 | High Vulnerability in Axiomthemes Conquerors

CVE-2026-28079 is a high-severity vulnerability affecting the Axiomthemes Conquerors theme. This vulnerability allows for PHP Local File Inclusion due to improper control of filename for include/require statements. The severity level is classified as high with a CVSS score of 8.1, indicating that this vulnerability poses a significant risk to organizations using the affected versions.

The vulnerability affects Conquerors versions from n/a through 1.2.13. Risk to organizations includes unauthorized access to sensitive files, which could lead to further exploitation of the system. Given the potential impact, organizations should prioritize patching immediately.

As of now, there is no public exploit confirmed for this vulnerability, but the attack vector is classified as network-based with high attack complexity and no privileges required. Organizations are advised to review their systems for any potential exposure and apply necessary patches.

In light of this vulnerability, it is essential for security teams to remain vigilant and monitor their applications for any signs of compromise, as attackers may leverage such vulnerabilities to gain unauthorized access to sensitive data.

Vulnerability Details

The CVE-2026-28079 vulnerability is categorized as a PHP Remote File Inclusion issue, specifically allowing for local file inclusion due to improper handling of filenames in include/require statements. The official CVE description emphasizes the risks associated with this vulnerability, particularly its potential for data exposure and unauthorized access.

The CVSS score of 8.1 reflects a high severity level, indicating that organizations should take this issue seriously. This vulnerability affects Conquerors versions up to 1.2.13 and is categorized under CWE-98, which pertains to improper control of filename for include/require statements.

Technical Analysis

The root cause of CVE-2026-28079 stems from insufficient validation of filenames used in include/require statements within PHP scripts. As a result, attackers may exploit this vulnerability to include arbitrary files, leading to potential data exposure or remote code execution.

The attack vector is classified as network-based, with a high attack complexity. No privileges or user interaction are required to exploit this vulnerability, making it particularly concerning. The potential impacts on confidentiality, integrity, and availability are all high, emphasizing the need for immediate action.

Risk & Impact Analysis

Organizations utilizing the Axiomthemes Conquerors theme should recognize the potential risks associated with CVE-2026-28079. The vulnerability allows attackers to include local files, which could lead to sensitive data exposure, potentially impacting the organization’s reputation and customer trust.

The blast radius of this vulnerability is significant, as it affects all installations of the Conquerors theme up to version 1.2.13. Organizations should assess their exposure and prioritize remediation based on this vulnerability's CVSS score, which indicates a high likelihood of exploitation.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The affected versions of the Axiomthemes Conquerors theme are all versions prior to the vendor patch, specifically versions up to and including 1.2.13.

Mitigation & Remediation

Organizations should apply the latest patches available for the Axiomthemes Conquerors theme to mitigate the risk associated with this vulnerability. If a patch is unavailable, consider implementing configuration hardening to restrict file inclusion capabilities.

For further guidance on securing applications, organizations can refer to resources on application security assessment best practices.

Detection Guidance

To detect potential exploitation of this vulnerability, organizations should monitor logs for unusual file inclusion attempts, track behavioral anomalies in application performance, and implement network signatures to identify unauthorized access attempts.

AppSecure Threat Intelligence Insight

CVE-2026-28079 highlights the need for organizations to maintain robust security practices, especially those utilizing PHP-based applications. As vulnerabilities like these become more prevalent, security teams should focus on proactive measures to secure their applications.

Following a vulnerability management program can help organizations identify and mitigate similar risks in the future. Additionally, investing in penetration testing methodology can provide deeper insights into application vulnerabilities.

In conclusion, organizations should remain vigilant against threats posed by vulnerabilities like CVE-2026-28079 and prioritize their remediation efforts to protect sensitive information.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2026-28079: High Vulnerability in Axiomthemes Conquerors