Redux Framework 4.4.12 – 4.4.17 – Unauthenticated JSON File Upload to Stored Cross-Site Scripting | CVE 2024-6828 | Plugin Vulnerabilities

Description

The Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due to missing authorization and capability checks on the Redux_Color_Scheme_Import function in versions 4.4.12 to 4.4.17. This makes it possible for unauthenticated attackers to upload JSON files, which can be used to conduct stored cross-site scripting attacks and, in some rare cases, when the wp_filesystem fails to initialize - to Remote Code Execution.

Affects Plugins

redux-framework

Fixed in 4.4.18

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/18a37063-31aa-4b1f-b1a5-1ea921a20686

Miscellaneous

Original Researcher

villu164

Verified

No

WPVDB ID

172fbef8-392d-426d-a3d8-3733fafb3379

Timeline

Publicly Published

2024-07-22 (about 1 year ago)

Added

2024-07-23 (about 1 year ago)

Last Updated

2024-07-23 (about 1 year ago)

Other

Published

Title

Published

2014-09-17

Title

Gmedia Gallery 1.2.1 - Shell Upload

Published

2022-02-07

Title

Catch Themes Demo Import < 2.1.1 - Admin+ Remote Code Execution

Published

2025-07-11

Title

Helpdesk Support Ticket System for WooCommerce <= 2.1.0 - Unauthenticated Arbitrary File Upload

Published

2014-08-01

Title

HTML5 AV Manager 0.2.7 - Arbitrary File Upload

Published

2025-10-14

Title

DocoDoco Store Locator <= 1.0.1 - Authenticated (Editor+) Arbitrary File Upload