rtMedia for WordPress, BuddyPress and bbPress < 4.6.16 - Subscriber+ RCE
CVE-2023-5931

8.8HIGH

Key Information:

Vendor: Wordpress
Status: rtMedia for WordPress, BuddyPress and bbPress
Vendor: CVE Published:; 26 December 2023

Summary

The rtMedia plugin for WordPress, BuddyPress, and bbPress prior to version 4.6.16 is susceptible to a file upload vulnerability. This flaw results from improper validation of uploaded files, allowing users with low-privilege accounts, such as subscribers, to potentially upload arbitrary files, including PHP scripts. Such uploads could lead to unauthorized command execution on the server, posing significant security risks to affected WordPress sites.

Affected Version(s)

rtMedia for WordPress, BuddyPress and bbPress 0 < 4.6.16

References

https://wpscan.com/vulnerability/3d6889e3-a01b-4e7f-868f-...

exploitvdb-entrytechnical-description

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 26, 2023
Vulnerability Reserved
Nov 2, 2023

Credit

Krzysztof Zając (CERT PL)

WPScan