CVE-2019-11185

Name of the Vulnerable Software and Affected Versions WP Live Chat Support Pro plugin versions through 8.0.26

Description The issue arises from an incomplete patch, resulting in an arbitrary file upload vulnerability. This vulnerability can be exploited by an unauthenticated remote user submitting a crafted file upload POST request to the "REST api remote upload endpoint". The exploit involves using a non-blacklisted executable file extension in conjunction with a whitelisted file extension and prepending "magic bytes" to the payload, allowing it to pass MIME checks and be classified as an image, despite having a trailing .phtml file extension.

Recommendations For WP Live Chat Support Pro plugin versions through 8.0.26, consider disabling the remote upload endpoint in the REST API until a patch is available. Restrict access to the plugin's file upload functionality to minimize the risk of exploitation. Avoid using the plugin's file upload feature until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.