exploitDog

CVE-2021-24493

Опубликовано: 13 сент. 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

The shopp_upload_file AJAX action of the Shopp WordPress plugin through 1.4, available to both unauthenticated and authenticated user does not have any security measure in place to prevent upload of malicious files, such as PHP, allowing unauthenticated users to upload arbitrary files and leading to RCE

Ссылки

https://wpscan.com/vulnerability/dcc7be04-550b-427a-a14f-a2365d96a00e
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/dcc7be04-550b-427a-a14f-a2365d96a00e
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ingenesis:shopp:*:*:*:*:*:wordpress:*:*

Версия до 1.4 (включая)

EPSS

Процентиль: 81%

0.01578

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-wjxv-ccw6-j9xh

github

больше 3 лет назад

The shopp_upload_file AJAX action of the Shopp WordPress plugin through 1.4, available to both unauthenticated and authenticated user does not have any security measure in place to prevent upload of malicious files, such as PHP, allowing unauthenticated users to upload arbitrary files and leading to RCE

EPSS

Процентиль: 81%

0.01578

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-434