Description
Unrestricted Upload of File with Dangerous Type vulnerability in contentstudio Contentstudio contentstudio allows Upload a Web Shell to a Web Server.This issue affects Contentstudio: from n/a through <= 1.3.7.
Published: 2026-01-08
Score: 9.1 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability allows an attacker to upload any file type, including executable web shells, to a WordPress site running the Contentstudio plugin. Because there is no file type filtering, an adversary can place a malicious script on the server, achieving remote code execution and full control of the affected site. This flaw directly compromises the confidentiality, integrity, and availability of the site.

Affected Systems

The flaw exists on all installations of the Contentstudio WordPress plugin up to and including version 1.3.7. Systems running WordPress with this plugin and any of those versions are susceptible.

Risk and Exploitability

With a CVSS score of 9.1 the vulnerability is classified as critical. The EPSS score of <1 % indicates a low probability of exploitation at present, and the vulnerability is not yet in the CISA KEV catalog. Nevertheless, the attack vector is inferred to be through the plugin’s file‑upload interface, which is typically accessible to any authenticated or even unauthenticated user depending on the site configuration. Once an attacker uploads a web shell, they can execute arbitrary code with the privileges of the web server.

Generated by OpenCVE AI on April 29, 2026 at 14:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Contentstudio plugin to version 1.3.8 or later to remove the flaw.
  • If an upgrade is impossible, deactivate or uninstall the Contentstudio plugin to eliminate the upload path.
  • Configure the web server or WordPress to reject unknown file types and enforce strict MIME type validation.
  • Monitor the plugin upload directory for unexpected files and review logs for anomalous activity.

Generated by OpenCVE AI on April 29, 2026 at 14:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 27 Apr 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 23 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

 cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H'}

Tue, 20 Jan 2026 15:30:00 +0000

Type Values Removed Values Added
References

Tue, 20 Jan 2026 14:45:00 +0000

Type Values Removed Values Added
References

Fri, 09 Jan 2026 13:30:00 +0000

Type Values Removed Values Added
First Time appeared Contentstudio
Contentstudio contentstudio
Wordpress
Wordpress wordpress
Vendors & Products Contentstudio
Contentstudio contentstudio
Wordpress
Wordpress wordpress

Thu, 08 Jan 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 08 Jan 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Thu, 08 Jan 2026 09:45:00 +0000

Type Values Removed Values Added
Description Unrestricted Upload of File with Dangerous Type vulnerability in contentstudio Contentstudio contentstudio allows Upload a Web Shell to a Web Server.This issue affects Contentstudio: from n/a through <= 1.3.7.
Title WordPress Contentstudio plugin <= 1.3.7 - Arbitrary File Upload vulnerability
Weaknesses CWE-434
References

Subscriptions

Contentstudio Contentstudio
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published:

Updated: 2026-04-28T16:14:22.923Z

Reserved: 2025-12-15T09:59:40.761Z

Link: CVE-2025-67910

cve-icon Vulnrichment

Updated: 2026-01-08T14:57:19.109Z

cve-icon NVD

Status : Deferred

Published: 2026-01-08T10:15:49.827

Modified: 2026-04-27T18:16:48.073

Link: CVE-2025-67910

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-29T15:00:13Z

Weaknesses