Arbitrary File Upload Vulnerability in YITH WooCommerce Gift Cards Plugin
CVE-2021-3120

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: Yith WooCommerce Gift Cards
Vendor: CVE Published:; 22 February 2021

Summary

The YITH WooCommerce Gift Cards Premium plugin for WordPress is susceptible to an arbitrary file upload vulnerability that could allow remote attackers to execute malicious code on the web server. Exploiting this weakness requires an attacker to add a valid Gift Card product to their shopping cart. An attacker can upload a file with a user-defined name and extension, including a .php file, which is not intended by the plugin's design that primarily allows image uploads. This flaw is significant as it permits unauthorized access to the web server's operating system from the context of the affected web server.

References

https://yithemes.com/themes/plugins/yith-woocommerce-gift...

x_refsource_MISC

https://github.com/guy-liu/yith-giftdrop

x_refsource_MISC

EPSS Score

12% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 22, 2021
Vulnerability Reserved
Jan 11, 2021