zozothemes Charety allows uploading malicious files

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.9

zozothemes Charety allows uploading malicious files

CVE-2026-24960

Summary

A security issue in zozothemes Charety allows attackers to upload malicious files, which can lead to unauthorized actions or system compromise. This issue affects Charety versions prior to 2.0.2. Users should update to the latest version to fix the issue.

Original title

Unrestricted Upload of File with Dangerous Type vulnerability in zozothemes Charety charety allows Using Malicious Files.This issue affects Charety: from n/a through < 2.0.2.

Original description

Unrestricted Upload of File with Dangerous Type vulnerability in zozothemes Charety charety allows Using Malicious Files.This issue affects Charety: from n/a through < 2.0.2.

Vulnerability type

CWE-434 Unrestricted File Upload

https://patchstack.com/database/Wordpress/Theme/charety/vulnerability/wordpress-...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026