Race Condition Vulnerability in Yoast SEO Plugin for WordPress
CVE-2018-19370

6.6MEDIUM

Key Information:

Vendor
Wordpress
Status
Yoast Seo
Vendor
CVE Published:
28 November 2018

Summary

A race condition vulnerability in the unzip_file function of the Yoast SEO plugin for WordPress prior to version 9.2.0 allows unauthorized command execution on the server operating system. This occurs when an SEO Manager can manipulate the file import process to execute malicious commands through a crafted ZIP file, posing significant security risks to affected installations.

References

https://www.youtube.com/watch?v=nL141dcDGCY
x_refsource_MISC
https://wordpress.org/plugins/wordpress-seo/#developers
x_refsource_MISC
https://github.com/Yoast/wordpress-seo/pull/11502/commits...
x_refsource_MISC

CVSS V3.1

Score:
6.6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.