A vulnerability has been found in Paddle up to 2.5.x and classified as critical. This vulnerability affects the function _wget_download. The manipulation leads to os command injection.

This vulnerability was named CVE-2023-52311. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.