Arbitrary File Upload Vulnerability in Webdeclic WPMasterToolKit
CVE-2024-56249
9.1CRITICAL
What is CVE-2024-56249?
The WPMasterToolKit by Webdeclic contains a vulnerability that permits the unrestricted upload of files with potentially dangerous types. This flaw enables attackers to upload a web shell to the web server, which can be leveraged to execute malicious commands. The vulnerability affects all versions up to and including version 1.13.1, posing significant risks to users who have not updated their installations. By exploiting this issue, an unauthorized user could gain control over the affected web server, leading to further security breaches.
Affected Version(s)
WPMasterToolKit 0 <= 1.13.1