Innorix WP Unrestricted File Upload Vulnerability Allowing Web Shell Upload

Vulnerability

A vulnerability in Innorix WP exists that allows for unrestricted file uploads of dangerous types, specifically web shells, to a web server. This issue affects all versions of Innorix WP, but only if the 'exam' directory is present under the installation directory (e.g., innorix/exam).

Impact

Exploitation of this vulnerability could lead to unauthorized execution of scripts on the server, allowing an attacker to execute commands or manipulate server resources remotely.

Added: Dec 29, 2025, 1:19 AM

Updated: Dec 29, 2025, 1:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

1.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

1.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Innorix WP Unrestricted File Upload Vulnerability Allowing Web Shell Upload

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating