CVE-2024-13418
8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Multiple plugins and/or themes for WordPress are vulnerable to Arbitrary File Uploads due to a missing capability check on the ajaxUploadFonts() function in various versions. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files that can make remote code execution possible. This issue was escalated to Envato over two months from the date of this disclosure and the issue, while partially patched, is still vulnerable.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| G5Theme | Benaa Framework | 0 <= 4.0.0 | affected |
| G5Theme | April Framework | 0 <= 5.1 | affected |
| G5Theme | Beyot Framework | 0 <= 6.0.6 | affected |
| G5Theme | Auteur Framework | 0 <= 7.1 | affected |
Weaknesses
- CWE-434: CWE-434 Unrestricted Upload of File with Dangerous Type
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://www.wordfence.com/threat-intel/vulnerabilities/id/bced4547-3264-43dc-8bb1-89a06f74ccbd?source=cve
- https://themeforest.net/item/beyot-wordpress-real-estate-theme/19514964
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.