A vulnerability has been found in Paddle up to 2.5.x and classified as critical. This vulnerability affects the function
_wget_download
. The manipulation leads to os command injection.
This vulnerability was named CVE-2023-52311. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.