Impact
A vulnerability exists in the Restaurt WordPress theme that allows an authenticated subscriber to upload files to the server without proper validation. The flaw, limited to themes 1.0.4 and earlier, permits the placement of arbitrary files on the web server. The potential impact is significant because the uploaded file could be an executable script or other malicious content that, if later accessed, might run with the server’s privileges. The CVSS score of 9.9 indicates that this weakness could enable remote code execution, even though the description does not detail the exact execution path; the medium for the impact is therefore inferred from the severity rating.
Affected Systems
The issue affects installations of the Restaurt theme distributed by Zozothemes, specifically all releases version 1.0.4 and earlier. WordPress sites that have not upgraded past this version are susceptible to the arbitrary file upload flaw.
Risk and Exploitability
The CVSS score of 9.9 classifies the vulnerability as critical, and the highest likelihood of exploitation is through the theme’s web interface by any authenticated subscriber. EPSS is not available, and the vulnerability is not listed in the CISA KEV catalog. An attacker can submit a crafted file through the upload function, and if the server simply stores or serves the file without further checks, the risk of executing malicious code is high, especially if the file lands in a directory accessible via the web.
OpenCVE Enrichment