CVE-2021-39352

 

Published at: - 21-10-2021 10:15

Last modified: - 28-02-2022 03:59

Total changes: - 5

Description

The Catch Themes Demo Import WordPress plugin is vulnerable to arbitrary file uploads via the import functionality found in the ~/inc/CatchThemesDemoImport.php file, in versions up to and including 1.7, due to insufficient file type validation. This makes it possible for an attacker with administrative privileges to upload malicious files that can be used to achieve remote code execution.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

 

Verification logic

 

Reference

• https://plugins.trac.wordpress.org/changeset/2617555/catch-themes-demo-import/trunk/inc/CatchThemesDemoImport.php
• https://github.com/BigTiger2020/word-press/blob/main/Catch%20Themes%20Demo%20Import.md
• https://www.wordfence.com/vulnerability-advisories/#CVE-2021-39352
• http://packetstormsecurity.com/files/165207/WordPress-Catch-Themes-Demo-Import-1.6.1-Shell-Upload.html
• http://packetstormsecurity.com/files/165463/WordPress-Catch-Themes-Demo-Import-Shell-Upload.html
• https://www.exploit-db.com/exploits/50580
• https://github.com/Hacker5preme/Exploits/tree/main/Wordpress/CVE-2021-39352

 

Keywords

NVD

 

CVE-2021-39352

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures