[WordPress Shortcodes Ultimate Plugin](versions 5.12.6 and older) Vulnerability to Arbitrary File Upload

Importance (CVSS3.0)

★★★★★★★☆☆☆　7.1 / 10　 - High

Details

A vulnerability of Arbitrary File Upload was discovered in WordPress Shortcodes Ultimate Plugin.

Therefore malicious attackers can upload any kinds of files. This can include backdoors that are executed to gain further access to your website.

Solutions

Update WordPress Shortcodes Ultimate Plugin to the newest (5.12.7 and newer).

Source

CVE-2023-25050

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.

[WordPress Shortcodes Ultimate Plugin](versions 5.12.6 and older) Vulnerable for Arbitrary File Upload, by WS Security is licensed under CC BY 4.0.