CVE-2022-4237

Name of the Vulnerable Software and Affected Versions Welcart e-Commerce WordPress plugin versions prior to 2.8.6

Description The issue arises from the lack of validation of user input before using it in file exist() functions via various AJAX actions available to any authenticated users. This could allow users with a role as low as subscriber to perform PHAR deserialisation when they can upload a file and a suitable gadget chain is present on the blog.

Recommendations For versions prior to 2.8.6, update to version 2.8.6 or later to resolve the issue. As a temporary workaround, consider restricting access to AJAX actions and file upload capabilities to higher-role users until the update is applied. Additionally, ensure that no suitable gadget chain is present on the blog to minimize the risk of exploitation.