Arbitrary File Uploads Vulnerability in School Management System for WordPress Plugin
CVE-2024-9659
9.8CRITICAL
Key Information
- Vendor
- School Management System for WordPress
- Vendor
- CVE Published:
- 23 November 2024
Badges
👾 Exploit Exists🔴 Public PoC
Summary
The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the mj_smgt_user_avatar_image_upload() function in all versions up to, and including, 91.5.0. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
- 👾
Exploit exists.
Vulnerability published.
Collectors
NVD Database1 Proof of Concept(s)