Unauthorized Media File Deletion Vulnerability in The Post Form Plugin
CVE-2024-1170

8.2HIGH

Key Information:

Vendor: Wordpress
Status: Post Form – Registration Form – Profile Form For User Profiles – Frontend Content Forms For User Submissions (ugc)
Vendor: CVE Published:; 7 March 2024

Summary

The BuddyForms plugin for WordPress, specifically its Frontend Content Forms feature designed for user-generated content submissions, is exposed to unauthorized media file deletion. This vulnerability arises from an inadequate capability check on the handle_deleted_media function, allowing unauthenticated attackers to delete arbitrary media files without authorization. This issue affects all versions of the plugin up to and including version 2.8.7, presenting significant risks for sites utilizing this plugin. Website owners are advised to update to the latest version and review their security posture to mitigate potential exploitation.

Affected Version(s)

Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) * <= 2.8.7

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/buddyforms/tru...

https://plugins.trac.wordpress.org/changeset/3046092/budd...

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 7, 2024
Vulnerability Reserved
Feb 1, 2024

Credit

Lucio Sá