HIGH
Ms
CVE published 2026-05-16
CVE-2020-37227
CVE-2020-37227 describes an unrestricted file upload issue in the HS Brand Logo Slider WordPress plugin. The supplied record ties the weakness to authenticated abuse of the admin upload flow and notes potential remote code execution if uploaded content is treated as executable by the server. Because the issue is high severity and affects an administrative path, sites using this plugin should treat it as a [truncated]