CVE-2021-4436

Name of the Vulnerable Software and Affected Versions 3DPrint Lite WordPress plugin versions prior to 1.9.1.5

Description The issue allows unauthenticated users to upload arbitrary files to the web server due to the lack of authorization and file checking in the p3dlite handle upload AJAX action. However, a .htaccess file prevents the uploaded files from being accessed on web servers like Apache. This vulnerability has been exploited by hackers to deploy the Godzilla Web Shell.

Recommendations For versions prior to 1.9.1.5, update to version 1.9.1.5 or later to resolve the issue. As a temporary workaround, consider disabling the p3dlite handle upload AJAX action until a patch is available. Restrict access to the vulnerable p3dlite handle upload AJAX action to minimize the risk of exploitation.