Ultimate Product Catalog

CVEs (1)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2016-20075	WordPress Ultimate Product Catalog	Hig	0.57	8.8	—		Jun 15, 2026	WordPress Ultimate Product Catalog 3.8.6 contains an arbitrary file upload vulnerability that allows authenticated users with contributor, editor, author, or administrator roles to upload malicious files by exploiting the custom fields functionality. Attackers can upload PHP…

CVE-2016-20075HigJun 15, 2026
WordPress
Ultimate Product Catalog
risk 0.57cvss 8.8epss —
WordPress Ultimate Product Catalog 3.8.6 contains an arbitrary file upload vulnerability that allows authenticated users with contributor, editor, author, or administrator roles to upload malicious files by exploiting the custom fields functionality. Attackers can upload PHP…