Advanced Custom Fields 5.0-5.12.2 - Unauthenticated File Upload
CVE-2022-2594

8.8HIGH

Key Information:

Vendor: Wordpress
Status: Advanced Custom Fields; Advanced Custom Fields Pro
Vendor: CVE Published:; 22 August 2022

Summary

The Advanced Custom Fields WordPress plugin before 5.12.3, Advanced Custom Fields Pro WordPress plugin before 5.12.3 allows unauthenticated users to upload files allowed in a default WP configuration (so PHP is not possible) if there is a frontend form available. This vulnerability was introduced in the 5.0 rewrite and did not exist prior to that release.

Affected Version(s)

Advanced Custom Fields 5.0 < 5.0*

Advanced Custom Fields 5.12.3

Advanced Custom Fields Pro 5.0 < 5.0*

References

https://wpscan.com/vulnerability/3fde5336-552c-4861-8b4d-...

x_refsource_MISC

https://www.pritect.net/blog/advanced-custom-fields-5-12-...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 22, 2022
Vulnerability Reserved
Aug 1, 2022

Credit

James Golovich