CVE Catalog
CVE-2026-40747
CriticalCVSS 9.9Summary
In Ecommerce Zone versions <= 0.9.7, there is a vulnerability that allows subscribers to upload arbitrary files.
Risk Assessment
An attacker could exploit this vulnerability to upload malicious software, potentially compromising the system.
Recommendation
It is recommended to upgrade to the latest version of Ecommerce Zone to mitigate this vulnerability.
Original NVD description (English source)
Subscriber Arbitrary File Upload in Ecommerce Zone <= 0.9.7 versions.

