Jinhwhite412

**Name of the Vulnerable Software and Affected Versions** College publisher Import WordPress plugin versions 0.1 and earlier **Description** The issue allows high privilege users to upload arbitrary files, such as PHP, due to the lack of checks on uploaded CSV files, leading to remote code execution (RCE). Additionally, the absence of a CSRF check makes the issue exploitable via a CSRF attack. **Recommendations** For College publisher Import WordPress plugin versions 0.1 and earlier, consider disabling the file upload functionality until a patch is available. Restrict access to the plugin's import feature to minimize the risk of exploitation. Avoid using the plugin for importing CSV files until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Classyfrieds WordPress plugin versions prior to 3.8 **Description** The issue is related to unrestricted file uploads of dangerous types. Exploitation of this issue may allow a remote attacker to upload and execute arbitrary files. Specifically, the plugin does not properly check uploaded files when an authenticated user adds a listing, only verifying the content-type in the request. This allows any authenticated user to upload arbitrary PHP files via the Add Listing feature, leading to remote code execution. **Recommendations** For Classyfrieds WordPress plugin versions prior to 3.8, update to a version that properly checks and restricts file uploads to prevent arbitrary file execution. As a temporary workaround, consider disabling the file upload feature in the Add Listing section of the plugin until a secure update is available. Restrict access to the plugin's file upload functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Event Banner WordPress plugin versions prior to 1.4 **Description** The issue is related to the lack of verification for uploaded image files, allowing admin accounts to upload arbitrary files, such as .exe or .php, leading to remote code execution (RCE). The absence of a CSRF check also makes the issue exploitable via such a vector. Additionally, the lack of authorization checks could potentially allow for local file inclusion (LFI) attacks, although this would require WordPress to be loaded. **Recommendations** For Event Banner WordPress plugin versions prior to 1.4, update to version 1.4 or later to resolve the issue. As a temporary workaround, consider disabling file upload functionality in the plugin until a patch is available. Restrict access to the plugin's upload feature to minimize the risk of exploitation.