CVE Catalog

CVE-2026-34893

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.42%

34th percentile - higher than 34% of all known CVEs

Summary

Thegov Core versions below 2.0.23 are vulnerable to unauthenticated local file inclusion.

Risk Assessment

An attacker could exploit this vulnerability to access sensitive files on the server, potentially leading to data exposure.

Recommendation

It is recommended to upgrade Thegov Core to version 2.0.23 or later to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Local File Inclusion in Thegov Core < 2.0.23 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS