PT-2023-32781 · WordPress · Essential Real Estate

István Márton

Published

2023-12-15

Updated

2023-12-21

CVE-2023-6827

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions The Essential Real Estate plugin for WordPress versions up to, and including, 4.3.5

Description The issue is related to arbitrary file uploads due to insufficient file type validation on the ajaxUploadFonts function. This allows authenticated attackers with subscriber-level capabilities or above to upload arbitrary files on the affected site's server, potentially making remote code execution possible.

Recommendations For versions up to, and including, 4.3.5, update to a version that includes a fix for the insufficient file type validation in the ajaxUploadFonts function. As a temporary workaround, consider disabling the ajaxUploadFonts function until a patch is available.

Fix

RCE

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2023-6827

Affected Products

Essential Real Estate

PT-2023-32781 · WordPress · Essential Real Estate

CVE-2023-6827

Weakness Enumeration

Related Identifiers

Affected Products

References · 8