Security Advisory

CVE-2025-49885

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-27 11:52:30

Last updated 2026-05-12 00:26:42

Assigner Patchstack

State PUBLISHED

Description

Unrestricted Upload of File with Dangerous Type vulnerability in HaruTheme Drag and Drop Multiple File Upload (Pro) - WooCommerce drag-and-drop-file-upload-wc-pro allows Upload a Web Shell to a Web Server.This issue affects Drag and Drop Multiple File Upload (Pro) - WooCommerce: from n/a through <= 5.0.6.

← Browse all CVEs View on cve.org ↗