Local File Inclusion in Post Grid, Slider & Carousel Ultimate Plugin for WordPress
CVE-2024-13409

8.8HIGH

Key Information:

Vendor: WordPress
Status: Post Grid, Slider & Carousel Ultimate – With Shortcode, Gutenberg Block & Elementor Widget
Vendor: CVE Published:; 24 January 2025

Summary

The Post Grid, Slider & Carousel Ultimate plugin for WordPress is susceptible to Local File Inclusion due to a flaw in the 'theme' parameter within the post_type_ajax_handler() function. This vulnerability allows authenticated attackers with Contributor-level access or higher to include and execute arbitrary files on the server. Consequently, this can lead to unauthorized execution of PHP code, enabling attackers to bypass access controls, access sensitive data, or execute malicious scripts under the guise of trusted file uploads.

Affected Version(s)

Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget * <= 1.6.10

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/post-grid-caro...

https://ja.wordpress.org/plugins/post-grid-carousel-ultim...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 24, 2025
Vulnerability Reserved
Jan 15, 2025

Credit

Hiroho Shimada