Double Extension Attack Vulnerability in Metform Contact Form Builder

CVE-2023-0714

8.1HIGH

Key Information

Vendor: Xpeedstudio
Status: Metform – Contact Form, Survey, Quiz, & Custom Form Builder For Elementor
Vendor: CVE Published:; 17 August 2024

Summary

The Metform Elementor Contact Form Builder for WordPress is vulnerable to Arbitrary File Upload due to insufficient file type validation in versions up to, and including, 3.2.4. This allows unauthenticated visitors to perform a "double extension" attack and upload files containing a malicious extension but ending with a benign extension, which may make remote code execution possible in some configurations.

Affected Version(s)

MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor <= 3.2.4

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Aug 17, 2024
Disclosed
Aug 16, 2024
Vulnerability Reserved.
Feb 7, 2023
Discovered
Feb 3, 2023

Collectors

NVD DatabaseMitre Database

Credit

Ramuel Gall