Description
HS Brand Logo Slider 2.1 contains an unrestricted file upload vulnerability that allows authenticated users to bypass client-side file extension validation by uploading arbitrary files. Attackers can intercept upload requests to the logoupload parameter in the admin interface and rename files to executable extensions .php to achieve remote code execution.
Published: 2026-05-16
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

HS Brand Logo Slider 2.1 allows authenticated WordPress administrators to upload arbitrary files by bypassing client‑side validation on the logoupload parameter. An attacker can rename the uploaded file to a .php extension and submit it, resulting in PHP code execution on the server. The weakness is an instance of Unrestricted File Upload (CWE‑434) and can compromise confidentiality, integrity, and availability of the affected site.

Affected Systems

The vulnerability affects all WordPress sites that have Heliossolutions' HS Brand Logo Slider plugin version 2.1 installed. No other vendors or product versions are listed as impacted.

Risk and Exploitability

The CVSS score of 8.7 reflects a high severity level. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, meaning it has not been officially reported as a known exploit yet. However, the attacker must have administrative privileges to the WordPress backend to perform the upload, which limits the attack surface to authenticated users. Because the flaw enables remote code execution with moderate effort, the risk remains significant for sites running the vulnerable plugin.

Generated by OpenCVE AI on May 16, 2026 at 16:32 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade HS Brand Logo Slider to the latest version that includes proper file type validation or uninstall the plugin if no fix is available.
  • Restrict WordPress admin access so that only trusted users can upload media, and disable the upload feature for the slider plugin if it can be deactivated.
  • Apply a server‑side restriction to the uploads directory to block execution of files with PHP extensions—for example, by adding a .htaccess rule such as "<Files *.php> deny from all </Files>" or by configuring the web server to treat uploaded files as non‑executable.
  • Regularly audit the uploads directory and monitor for unexpected PHP files to detect any attempts to exploit the upload mechanism.

Generated by OpenCVE AI on May 16, 2026 at 16:32 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 18 May 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Sun, 17 May 2026 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Heliossolutions
Heliossolutions hs Brand Logo Slider
Wordpress
Wordpress wordpress
Vendors & Products Heliossolutions
Heliossolutions hs Brand Logo Slider
Wordpress
Wordpress wordpress

Sat, 16 May 2026 15:45:00 +0000

Type Values Removed Values Added
Description HS Brand Logo Slider 2.1 contains an unrestricted file upload vulnerability that allows authenticated users to bypass client-side file extension validation by uploading arbitrary files. Attackers can intercept upload requests to the logoupload parameter in the admin interface and rename files to executable extensions .php to achieve remote code execution.
Title WordPress Plugin HS Brand Logo Slider 2.1 Unrestricted File Upload
Weaknesses CWE-434
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Heliossolutions Hs Brand Logo Slider
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-05-18T18:14:00.680Z

Reserved: 2026-05-15T13:25:19.369Z

Link: CVE-2020-37227

cve-icon Vulnrichment

Updated: 2026-05-18T18:13:42.495Z

cve-icon NVD

Status : Deferred

Published: 2026-05-16T16:16:17.713

Modified: 2026-05-18T17:32:04.823

Link: CVE-2020-37227

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-17T17:01:00Z

Weaknesses
  • CWE-434

    Unrestricted Upload of File with Dangerous Type