Shopxo · Shopxo · CVE-2025-26325
**Name of the Vulnerable Software and Affected Versions**
ShopXO version 6.4.0
**Description**
The issue concerns a problem with file upload in the ThemeDataService.php file.
**Recommendations**
For ShopXO version 6.4.0, consider restricting access to the ThemeDataService.php file to minimize the risk of exploitation until a patch is available.