Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.9
CVE-2026-42748: WPify Woo Czech: Unrestricted File Upload Risks Web Server Access
CVE-2026-42748
Summary
A security issue in WPify Woo Czech's file upload feature allows attackers to upload malicious files, potentially gaining access to the web server. This could lead to unauthorized changes or data theft. Update to the latest version of WPify Woo Czech to fix this issue.
Original title
Unrestricted Upload of File with Dangerous Type vulnerability in WPify WPify Woo Czech wpify-woo allows Upload a Web Shell to a Web Server.This issue affects WPify Woo Czech: from n/a through <= 5....
Original description
Unrestricted Upload of File with Dangerous Type vulnerability in WPify WPify Woo Czech wpify-woo allows Upload a Web Shell to a Web Server.This issue affects WPify Woo Czech: from n/a through <= 5.4.1.
nvd CVSS3.1
9.9
Vulnerability type
CWE-434
Unrestricted File Upload
Published: 27 May 2026 · Updated: 28 May 2026 · First seen: 27 May 2026