Multiple critical vulnerabilities in WordPress (CVE-2024-7257, CVE-2024-6315, CVE-2023-5000, CVE-2024-5709)

Published On: Aug 16, 2024 18:59

Advisory No: TZCERT-SA-24-0016

Source: yayextra, blox-page-builder, horizontal-scrolling-announcements, js_composer

Software Affected: yayextra, blox-page-builder, horizontal-scrolling-announcements, js_composer

Overview

WordPress is vulnerable to multiple critical vulnerabilities. Exploitation of these vulnerabilities may allow an unauthenticated attacker to execute arbitrary codes.

Description

WordPress plugins yayextra, blox-page-builder, horizontal-scrolling-announcements, js_composer are affected by the vulnerabilities tracked as CVE-2024-7257, CVE-2024-6315, CVE-2023-5000, and CVE-2024-5709 with CVSS score of 9.8, 8.8, 8.8 and 8.8 respectively. The plugins are vulnerable to arbitrary file uploads due to missing file type validation in the handle_upload_file function, arbitrary file uploads due to missing file type validation in the 'handleUploadFile' function, SQL Injection via the plugin's 'hsas-shortcode' shortcode and to Local File Inclusion via the 'layout_name' parameter. Remote attackers can exploit the vulnerabilities to achieve arbitrary code execution.

Impact

Successful exploitation of these vulnerabilities may allow an attacker to take control of the affected system.

Solution

WordPress has released security patches for these vulnerabilities. Users and administrators are encouraged to apply necessary updates.

Subscribe To TZ - CERT Newsletter

A digest of Tanzania Computer Emergency Response Team coverage of cyber-security news across the globe.

Subscribe
Report Incident