PT-2023-32781 · WordPress · Essential Real Estate

István Márton

Publicado

2023-12-15

Atualizado

2023-12-21

CVE-2023-6827

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions The Essential Real Estate plugin for WordPress versions up to, and including, 4.3.5

Description The issue is related to arbitrary file uploads due to insufficient file type validation on the ajaxUploadFonts function. This allows authenticated attackers with subscriber-level capabilities or above to upload arbitrary files on the affected site's server, potentially making remote code execution possible.

Recommendations For versions up to, and including, 4.3.5, update to a version that includes a fix for the insufficient file type validation in the ajaxUploadFonts function. As a temporary workaround, consider disabling the ajaxUploadFonts function until a patch is available.

Correção

RCE

Unrestricted File Upload

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-434

Identificadores relacionados

CVE-2023-6827

Produtos afetados

Essential Real Estate

PT-2023-32781 · WordPress · Essential Real Estate

CVE-2023-6827

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8