CVE-2024-10801

Name of the Vulnerable Software and Affected Versions WordPress User Extra Fields plugin versions up to and including 16.5

Description The WordPress User Extra Fields plugin is vulnerable to arbitrary file uploads due to missing file type validation in the ajax manage file chunk upload() function. This allows unauthenticated attackers to upload arbitrary files on the affected site's server, potentially leading to remote code execution. User registration must be enabled for this vulnerability to be exploited.

Recommendations For WordPress User Extra Fields plugin versions up to and including 16.5, update to a version later than 16.5 to resolve the issue. As a temporary workaround, consider disabling the ajax manage file chunk upload() function until a patch is available. Additionally, restrict user registration to minimize the risk of exploitation.