Description
Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions.
Published: 2026-06-26
Score: 9.1 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An error in the TemplateSpare WordPress plugin allows an authenticated administrator to upload any file to the server without validation. Once uploaded, a malicious file, such as a PHP script or web shell, can be executed, giving an attacker full control over the affected WordPress site and potentially the underlying server. The weakness is a classic External Input Validation failure, categorized as CWE‑434.

Affected Systems

The vulnerability affects the Templatespare TemplateSpare WordPress plugin versions up to and including 4.2.0. Any WordPress installation using these versions and having an administrator account is susceptible.

Risk and Exploitability

The CVSS score of 9.1 indicates critical severity. EPSS is not available, but the flaw is marked as not listed in the CISA KEV catalog, suggesting no known large‑scale exploitation yet. The likely attack vector is an authenticated administrator exploiting the upload feature, which may require the attacker to gain admin credentials or compromise the administrator account.

Generated by OpenCVE AI on June 26, 2026 at 17:38 UTC.

Remediation

Vendor Solution

Update the WordPress TemplateSpare Plugin to the latest available version (at least 4.2.1).

OpenCVE Recommended Actions

  • Apply the vendor patch, upgrading TemplateSpare to version 4.2.1 or later.
  • If an immediate upgrade is not possible, disable the upload capability for all user roles that do not require it via WordPress settings or a security plugin.
  • Re‑authenticate administrators with strong, unique passwords and enable two‑factor authentication to reduce the chance an attacker can log in with admin privileges.

Generated by OpenCVE AI on June 26, 2026 at 17:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Templatespare
Templatespare templatespare
Wordpress
Wordpress wordpress
Vendors & Products Templatespare
Templatespare templatespare
Wordpress
Wordpress wordpress

Fri, 26 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 26 Jun 2026 15:15:00 +0000

Type Values Removed Values Added
Description Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions.
Title WordPress TemplateSpare plugin <= 4.2.0 - Arbitrary File Upload vulnerability
Weaknesses CWE-434
References
Metrics cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H'}

Subscriptions

Templatespare Templatespare
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published:

Updated: 2026-06-26T15:31:34.376Z

Reserved: 2026-06-25T08:03:29.941Z

Link: CVE-2026-57658

cve-icon Vulnrichment

Updated: 2026-06-26T15:31:31.542Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T20:45:03Z

Weaknesses
  • CWE-434

    Unrestricted Upload of File with Dangerous Type