CVE-2025-53213

Name of the Vulnerable Software and Affected Versions: ELEXtensions ReachShip WooCommerce Multi-Carrier & Conditional Shipping versions through 4.3.1

Description: An unrestricted file upload vulnerability exists that allows the use of malicious files. This issue impacts e-commerce platforms utilizing the affected plugin.

Recommendations: Disable the plugin until a fix is available. Tighten upload restrictions to prevent the upload of dangerous file types.