CVE-2026-28114 | THREATINT

Description

Unrestricted Upload of File with Dangerous Type vulnerability in firassaidi WooCommerce License Manager fs-license-manager allows Upload a Web Shell to a Web Server.This issue affects WooCommerce License Manager: from n/a through <= 7.0.6.

PUBLISHED Reserved 2026-02-25 | Published 2026-03-05 | Updated 2026-03-05 | Assigner Patchstack

Problem types

Unrestricted Upload of File with Dangerous Type

Product status

Default status

unaffected

Any version

affected

Credits

Bonds | Patchstack Bug Bounty Program finder

References

patchstack.com/...itrary-file-upload-vulnerability?_s_id=cve vdb-entry

cve.org (CVE-2026-28114)

nvd.nist.gov (CVE-2026-28114)

Download JSON