WordPress Plugin Vulnerabilities

e-signature < 1.5.6.8 - Unauthenticated Arbitrary File Upload leading to RCE

Description

The AJAX sif_upload_file allowed the authorised extensions to be provided in the request, which result in unauthenticated arbitrary file upload and lead to RCE

Proof of Concept

Affects Plugins

Plugin icon
e-signature
Fixed in 1.5.6.8

References

URL
https://pagely.com/blog/unauthenticated-remote-code-execution-in-e-signature-plugin/

Miscellaneous

Original Researcher
John Castro
Submitter
Pagely
Submitter website
https://www.pagely.com
Submitter twitter
pagely
Verified
Yes
WPVDB ID
0e6b7a1f-dadd-45da-9961-6fe89ffb4c70

Timeline

Publicly Published
2021-01-19 (about 5 years ago)
Added
2021-01-19 (about 5 years ago)
Last Updated
2021-01-20 (about 5 years ago)

Other

Published
Title
Published
2024-01-30
Title
WordPress < 6.4.3 - Admin+ PHP File Upload
Published
2015-02-22
Title
Holding Pattern Theme <= 0.6 - Arbitrary File Upload
Published
2024-11-11
Title
Boat Rental Plugin for WordPress <= 1.0.1 - Unauthenticated Arbitrary File Upload
Published
2023-12-12
Title
Greenshift – animation and page builder blocks < 7.6.3 - Authenticated (Administrator+) Arbitrary File Upload
Published
2025-07-01
Title
Drag and Drop Multiple File Upload (Pro) - WooCommerce < 5.0.7 and 5.0 - 5.0.5 - Unauthenticated Arbitrary File Upload