Eoxia

eoxia

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Wpshop 2

wpshop_2

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-10135 1Eoxia 1Wpshop 2 Dec 16, 2025 Jul 19, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajaxUpload function in versions before 1.3.9.6. This makes it possible for unauthenticated...Show more The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajaxUpload function in versions before 1.3.9.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2015-10135

1Eoxia

1Wpshop 2

Dec 16, 2025

Jul 19, 2025

N/A· v4

9.8 CRITICAL· v3

N/A· v2

The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajaxUpload function in versions before 1.3.9.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible.Show less