Vulnerability in File Manager Pro's Filester plugin for WordPress allows arbitrary file inclusion

CVE-2024-9669
7.2HIGH

Key Information

Vendor
Ninjateam
Status
File Manager Pro – Filester
Vendor
CVE Published:
28 November 2024

Summary

The File Manager Pro – Filester plugin for WordPress is vulnerable to Local JavaScript File Inclusion in all versions up to, and including, 1.8.5 via the 'fm_locale' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included. The vulnerability was partially patched in version 1.8.5.

Affected Version(s)

File Manager Pro – Filester <= 1.8.5

Refferences

https://www.wordfence.com/threat-intel/vulnerabilities/id...
https://plugins.trac.wordpress.org/browser/filester/trunk...
https://plugins.trac.wordpress.org/browser/filester/trunk...
https://plugins.trac.wordpress.org/changeset/3186518/
https://plugins.trac.wordpress.org/changeset/3196150/

CVSS V3.1

Score:
7.2
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre Database

Credit

TANG Cheuk Hei
.