Scripts Organizer < 3.0 - Unauthenticated Arbitrary File Upload
CVE-2021-24890

8.8HIGH

Key Information:

Vendor: Wordpress
Status: Scripts-organizer
Vendor: CVE Published:; 26 September 2022

Summary

The Scripts Organizer WordPress plugin before 3.0 does not have capability and CSRF checks in the saveScript AJAX action, available to both unauthenticated and authenticated users, and does not validate user input in any way, which could allow unauthenticated users to put arbitrary PHP code in a file

Affected Version(s)

scripts-organizer 3.0

References

https://wpscan.com/vulnerability/f3b450d2-84ce-4c13-ad6a-...

x_refsource_CONFIRM

https://dplugins.com/products/scripts-organizer/

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Sep 26, 2022
Vulnerability Reserved
Jan 14, 2021

Credit

Ovidiu Maghetiu