CVE-2023-0039

Name of the Vulnerable Software and Affected Versions The User Post Gallery - UPG plugin for WordPress versions up to, and including 2.19

Description The issue allows for authorization bypass, leading to remote command execution due to the use of a nopriv AJAX action and user-supplied function calls and parameters. This enables unauthenticated attackers to call arbitrary PHP functions, allowing actions such as adding new files that can be webshells and updating the site's options to permit anyone to register as an administrator.

Recommendations For versions up to, and including 2.19, update to a version that fixes this issue to prevent authorization bypass and remote command execution. As a temporary workaround, consider restricting access to the nopriv AJAX action until a patch is available. Avoid using user-supplied function calls and parameters in the affected plugin until the issue is resolved.