CMSSuperHeroes Wastia Unrestricted File Upload Vulnerability Allowing Web Shells

Vulnerability

A vulnerability allowing unrestricted file uploads of dangerous types has been identified in the CMSSuperHeroes Wastia theme, specifically in versions prior to 1.1.3. This flaw enables users to upload web shells to the web server, potentially leading to unauthorized access or control.

Impact

Exploitation of this vulnerability allows for the upload of web shells, which can be used to execute arbitrary commands on the server, effectively compromising the web server's security.

Added: Oct 22, 2025, 5:42 PM

Updated: Oct 22, 2025, 11:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

CMSSuperHeroes Wastia Unrestricted File Upload Vulnerability Allowing Web Shells

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating