What the vulnerability does
01Description
An unintended require vulnerability in <v0.5.5 larvitbase-api may allow an attacker to load arbitrary non-production code (JavaScript file).
CVSS base score
—
Key dates
02Disclosure timeline
September 3, 2019
CVE published
August 4, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-28092 WordPress Sounder theme <= 1.3.11 - Local File Inclusion vulnerability
CVE-2026-28062 WordPress Happy Baby theme <= 1.2.12 - Local File Inclusion vulnerability
CVE-2024-32523 WordPress Mailster plugin <= 4.0.6 - Unauthenticated Local File Inclusion vulnerability
CVE-2025-69067 WordPress Tails theme <= 1.4.12 - Local File Inclusion vulnerability
CVE-2025-39494 WordPress Wilmër theme < 3.4.2 - Local File Inclusion Vulnerability
