Unauthenticated Arbitrary File Upload Vulnerability in WooCommerce Extra Product Options Plugin
CVE-2024-7257

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: Yayextra – WooCommerce Extra Product Options
Vendor: CVE Published:; 3 August 2024

Summary

The YayExtra WooCommerce Extra Product Options plugin for WordPress has a vulnerability that allows arbitrary file uploads due to missing file type validation in its handle_upload_file function. This weakness is present in all versions up to and including version 1.3.7. Unauthenticated attackers can exploit this flaw to upload arbitrary files to the server where the affected site is hosted. Consequently, this could potentially lead to remote code execution, posing a significant risk to website integrity and security. Immediate action is recommended to mitigate potential threats associated with this vulnerability.

Affected Version(s)

YayExtra – WooCommerce Extra Product Options * <= 1.3.7

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://wordpress.org/plugins/yayextra/#developers

https://plugins.trac.wordpress.org/browser/yayextra/tags/...

EPSS Score

5% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 3, 2024
Vulnerability Reserved
Jul 29, 2024

Credit

wesley