Unauthenticated File Upload Vulnerability in WP Membership Plugin
CVE-2024-10547

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: WP Membership
Vendor: CVE Published:; 9 November 2024

Summary

The WP Membership plugin for WordPress contains a vulnerability that allows for arbitrary file uploads. This issue arises from the absence of sufficient file type validation in the user_profile_image_upload() function across all versions up to 1.6.2. As a consequence, unauthenticated attackers can exploit this vulnerability to upload harmful files to the server of an affected WordPress site, potentially leading to remote code execution and unauthorized access.

Affected Version(s)

WP Membership * <= 1.6.2

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://codecanyon.net/item/wp-membership/10066554

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 9, 2024
Vulnerability Reserved
Oct 30, 2024

Credit

Tonn