Vulnerability in The Slider Responsive Slideshow Allows PHP Object Injection
CVE-2024-1859

8.8HIGH

Key Information:

Vendor: Wordpress
Status: Slider Responsive Slideshow – Image Slider, Gallery Slideshow
Vendor: CVE Published:; 1 March 2024

Summary

The Slider Responsive Slideshow plugin for WordPress exposes a vulnerability through PHP Object Injection due to the deserialization of untrusted input within the awl_slider_responsive_shortcode function. This flaw affects all versions of the plugin up to and including 1.3.8 and allows attackers with contributor-level access and above to inject PHP objects. Though there is no known object pollution (POP) chain present within the plugin itself, the potential exists for an attacker to exploit additional plugins or themes present on the target system. Consequently, this could lead to arbitrary file deletions, unauthorized access to sensitive data, or execution of malicious code.

Affected Version(s)

Slider Responsive Slideshow – Image slider, Gallery slideshow * <= 1.3.8

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/changeset?sfp_email=&s...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 1, 2024
Vulnerability Reserved
Feb 23, 2024

Credit

Francesco Carlucci