WooCommerce Product Carousel Slider & Grid Ultimate Vulnerable to PHP Object Injection
CVE-2024-1950

7.5HIGH

Key Information:

Vendor
Wordpress
Status
Product Carousel Slider & Grid Ultimate For WooCommerce
Vendor
CVE Published:
13 March 2024

Summary

The Product Carousel Slider & Grid Ultimate for WooCommerce plugin in WordPress is susceptible to PHP Object Injection through the deserialization of untrusted input via shortcode. This vulnerability affects all versions up to and including 1.9.7. Authenticated attackers with contributor access or higher can exploit this flaw to inject malicious PHP objects. Without a Present Object Protocol (POP) chain within the plugin, the direct impact is limited. However, if additional plugins or themes are present that incorporate a POP chain, the attacker could potentially delete arbitrary files, access sensitive information, or execute harmful code.

Affected Version(s)

Product Carousel Slider & Grid Ultimate for WooCommerce * <= 1.9.7

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...
https://plugins.trac.wordpress.org/browser/woo-product-ca...
https://plugins.trac.wordpress.org/browser/woo-product-ca...

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Francesco Carlucci
.