What is the severity of CVE-2026-22401?

CVE-2026-22401 has a CVSS v3 score of 7.5, which is classified as High severity.

Is there an exploit available for CVE-2026-22401?

No known public exploits are currently available for CVE-2026-22401.

Is there a patch available for CVE-2026-22401?

Yes, patches are available for CVE-2026-22401. Check the vendor advisories for update instructions.

CVE-2026-22401 - CVE Details, Severity, and Analysis

Published: January 28, 2026

Last updated:15 hours ago (January 28, 2026)

Updated January 28, 2026

no major risk factors

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in pavothemes Freshio freshio allows PHP Local File Inclusion.This issue affects Freshio: from n/a through <= 2.4.2.

Strobes VI. (2026). CVE-2026-22401 - CVE Details and Analysis. Strobes VI. Retrieved January 28, 2026, from https://vi.strobes.co/cve/CVE-2026-22401

Published: January 28, 2026

Last updated:15 hours ago (January 28, 2026)

Updated January 28, 2026

no major risk factors

Strobes VI. (2026). CVE-2026-22401 - CVE Details and Analysis. Strobes VI. Retrieved January 28, 2026, from https://vi.strobes.co/cve/CVE-2026-22401