WordPress Plugin Vulnerabilities

Frontend Admin by DynamiApps Plugin < 3.18.4 - Unauthenticated Arbitrary File Upload

Description

The plugin is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajax_add_attachment' function, allowing unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Plugin icon
acf-frontend-form-element
Fixed in 3.18.4

References

CVE
CVE-2023-51411
URL
https://patchstack.com/database/vulnerability/acf-frontend-form-element/wordpress-frontend-admin-by-dynamiapps-plugin-3-18-3-unauthenticated-arbitrary-file-upload-vulnerability

Miscellaneous

Original Researcher
Rafie Muhammad
Verified
No
WPVDB ID
0b460334-8546-42cc-9906-f58aee0388e6

Timeline

Publicly Published
2023-12-27 (about 2 years ago)
Added
2024-01-03 (about 2 years ago)
Last Updated
2024-01-24 (about 2 years ago)

Other

Published
Title
Published
2014-08-01
Title
Work The Flow File Upload < 2.4 - wp-admin/admin-ajax.php accept_file_types Parameter Manipulation File Upload Restriction Bypass
Published
2025-03-28
Title
SoJ Soundslides <= 1.2.2 - Authenticated (Contributor+) Arbitrary File Upload
Published
2014-08-01
Title
Radial - Remote File Upload
Published
2024-11-11
Title
kineticPay for WooCommerce < 3.0 - Unauthenticated Arbitrary File Upload
Published
2024-09-06
Title
Customizer Export/Import < 0.9.7.1 - Authenticated (Admin+) Arbitrary File Upload via Customization Settings Import