WordPress Plugin Vulnerabilities

MP3 Audio Player for Music, Radio & Podcast by Sonaar < 5.0 - Unauthenticated Arbitrary File Download

Description

The MP3 Audio Player for Music, Radio & Podcast by Sonaar plugin for WordPress is vulnerable to arbitrary file downloads due to insufficient file validation on the load_lyrics_ajax_callback() function in all versions up to, and including, 4.10.1. This makes it possible for unauthenticated attackers to download arbitrary files such as wp-config.php.

Affects Plugins

Plugin icon
mp3-music-player-by-sonaar
Fixed in 5.0

References

CVE
CVE-2024-31343
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/9576408b-d048-4e36-bc1a-c01c9f586365

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
beluga
Verified
No
WPVDB ID
10c90180-d5fb-44bf-ac72-8bdc1561a572

Timeline

Publicly Published
2024-04-05 (about 2 years ago)
Added
2024-04-10 (about 2 years ago)
Last Updated
2024-04-10 (about 2 years ago)

Other

Published
Title
Published
2024-04-26
Title
Multiple Plugins by tychesoftwares <= (Various Versions) - Missing Authorization to Notice Dismissal
Published
2025-07-04
Title
LMSACE Connect <= 3.4 - Missing Authorization
Published
2024-02-14
Title
WP Setup Wizard < 1.0.8.2 - Authenticated (Subscriber+) Full Database Download
Published
2025-12-18
Title
Image Photo Gallery Final Tiles Grid < 3.6.8 - Missing Authorization to Authenticated (Contributor+) Gallery Management
Published
2025-01-06
Title
Host PHP Info <= 1.0.4 - Missing Authorization to Unauthenticated Sensitive Information Disclosure