CRITICAL
themagnifico52
CVE published 2026-06-16
CVE-2026-40750
A critical vulnerability was discovered in the Kids Online Store theme, affecting versions from n/a through 0.8.9. This vulnerability, classified as CWE-434, allows for the unrestricted upload of files with dangerous types, potentially enabling attackers to upload a web shell to a web server. The vulnerability has a CVSS score of 9.9 and is considered critical.