CVE-2016-20075 HIGH

CVE-2016-20075: WordPress Ultimate Product Catalog 3.8.6 Arbitrary File Upload RCE

Vendor Etoilewebdesign

Product Ultimate Product Catalog

Weakness CWE-863 · Incorrect authorization

Published June 15, 2026

Last update June 15, 2026

View on NVD All CVEs

CVSS base score

8.7/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

Description

WordPress Ultimate Product Catalog 3.8.6 contains an arbitrary file upload vulnerability that allows authenticated users with contributor, editor, author, or administrator roles to upload malicious files by exploiting the custom fields functionality. Attackers can upload PHP shells through the Products tab custom file field and access them via the upcp-product-file-uploads directory to execute arbitrary code on the server.

Key dates

Disclosure timeline

June 15, 2026 CVE published

June 15, 2026 Record updated