CVE-2024-58349 – WordPress Theme Travelscape 1.0.3 Arbitrary File Upload

CVE ID :CVE-2024-58349

Published : June 8, 2026, 2:16 a.m. | 17 minutes ago

Description :WordPress Theme Travelscape 1.0.3 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by exploiting insufficient validation in the theme’s upload functionality. Attackers can upload arbitrary files to the theme directory and execute them to achieve remote code execution on the affected WordPress installation.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-11477 – hs-web hsweb-framework OAuth2 Client OAuth2Client.java OAuth2Client redirect

CVE-2026-11476 – Kushan2k student-management-system Profile Update Endpoint AdminController.php edit-admin improper authorization

CVE-2026-11475 – Kushan2k student-management-system Certificate Verification Endpoint GradeController.php getStatus sql injection

CVE-2024-58348 – WordPress Background Image Cropper 1.2 Remote Code Execution