CVE-2026-3533

Published: Mar 24, 2026 Last Modified: Mar 24, 2026
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 8,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high

Description

AI Translation Available

The Jupiter X Core plugin for WordPress is vulnerable to limited file uploads due to missing authorization on import_popup_templates() function as well as insufficient file type validation in the upload_files() function in all versions up to, and including, 4.14.1. This makes it possible for Authenticated attackers with Subscriber-level access and above, to upload files with dangerous types that can lead to Remote Code Execution on servers configured to handle .phar files as executable PHP (e.g., Apache+mod_php), or Stored Cross-Site Scripting via .svg, .dfxp, or .xhtml files upload on any server configuration

434

Unrestricted Upload of File with Dangerous Type

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Confidentiality Availability
Potential Impacts:
Execute Unauthorized Code Or Commands
Applicable Platforms
Languages: ASP.NET, Not Language-Specific, PHP
Technologies: Web Server
Likelihood of Exploit: Medium
View CWE Details
https://plugins.trac.wordpress.org/browser/jupiterx-core/tr…
https://plugins.trac.wordpress.org/browser/jupiterx-core/trunk/includes/control…
https://plugins.trac.wordpress.org/browser/jupiterx-core/tr…
https://plugins.trac.wordpress.org/browser/jupiterx-core/trunk/includes/extensi…
https://plugins.trac.wordpress.org/browser/jupiterx-core/tr…
https://plugins.trac.wordpress.org/browser/jupiterx-core/trunk/includes/extensi…
https://www.wordfence.com/threat-intel/vulnerabilities/id/7…
https://www.wordfence.com/threat-intel/vulnerabilities/id/70bc5247-525d-4aae-9d…