PT-2021-15766 · WordPress · Wp-Curriculo Vitae Free
Jin Huang
·
Published
2021-04-12
·
Updated
2021-04-20
·
CVE-2021-24222
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
WP-Curriculo Vitae Free WordPress plugin versions 6.3 and earlier
Description:
The issue allows unauthenticated users to upload arbitrary files, including those that can lead to remote code execution (RCE), due to a lack of file extension restrictions in the profile picture and resume submission form. This form is embedded in a page using the [formCadastro] shortcode.
Recommendations:
For WP-Curriculo Vitae Free WordPress plugin versions 6.3 and earlier, consider disabling the file upload feature in the [formCadastro] form until a patch is available. Restrict access to the form to minimize the risk of exploitation. Avoid using the file upload feature for profile pictures and resumes until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
RCE
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wp-Curriculo Vitae Free