CVE-2023-54352
CRITICAL NVDCVSS Score
9.8
Severity
CRITICAL
Source
NVD
Published
Jun 08, 2026
Description
WordPress Seotheme contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary PHP code by uploading malicious files to the theme directory. Attackers can access the uploaded PHP shell at /wp-content/themes/seotheme/mar.php to execute system commands and upload additional files for persistent access.