vendor:
Download From Files
by:
spacehen
9,8
CVSS
HIGH
Arbitrary File Upload
434
CWE
Product Name: Download From Files
Affected Version From: 1.48
Affected Version To: 1.48
Patch Exists: YES
Related CWE: N/A
CPE: a:wordpress:wordpress_plugin:download_from_files
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Ubuntu 20.04.1 LTS (x86)
2021
WordPress Plugin Download From Files 1.48 – Arbitrary File Upload
This exploit allows an attacker to upload a malicious file to the vulnerable Wordpress plugin Download From Files 1.48. The vulnerability exists due to insufficient validation of the uploaded file type. An attacker can upload a malicious file with a .php4 or .phtml extension and gain remote code execution on the server.
Mitigation:
Upgrade to the latest version of the plugin or disable the plugin if it is not needed.