Helmut Wandl Advanced Settings Unrestricted File Upload Vulnerability Allowing Web Shell Upload

Vulnerability

A vulnerability allowing unrestricted file upload of dangerous types has been identified in the Helmut Wandl Advanced Settings WordPress plugin, specifically in versions through 3.1.1. This vulnerability enables the upload of a web shell to the web server.

Impact

Exploitation of this vulnerability allows for the upload of a web shell, which can be used to execute arbitrary commands on the server.

Added: Nov 6, 2025, 4:31 PM

Updated: Nov 6, 2025, 9:04 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Helmut Wandl Advanced Settings Unrestricted File Upload Vulnerability Allowing Web Shell Upload

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating