VikRentCar Car Rental Management System < 1.4.4 – Authenticated (Administrator+) Arbitrary File Upload | CVE 2025-5322 | Plugin Vulnerabilities

Description

The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the do_updatecar and createcar functions in all versions up to, and including, 1.4.3. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server, which may make remote code execution possible.

Affects Plugins

Fixed in 1.4.4

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/5f837ba2-64a2-4d8e-8212-b646cb94b0d7

Miscellaneous

Original Researcher

Jonas Benjamin Friedli

Verified

No

WPVDB ID

37728349-0f31-4e30-a5d2-8d35844f765a

Timeline

Publicly Published

2025-07-03 (about 10 months ago)

Added

2025-07-03 (about 10 months ago)

Last Updated

2025-07-03 (about 10 months ago)

Other

Published

Title

Published

2025-08-12

Title

School Management <= 1.93.1 (02-07-2025) - Authenticated (Student+) Arbitrary File Upload

Published

2025-02-11

Title

Security & Malware scan by CleanTalk < 2.150 - Unauthenticated Arbitrary File Upload

Published

2015-06-10

Title

WordPress 4.1 - 4.1.1 - Arbitrary File Upload

Published

2015-04-24

Title

Premium SEO Pack 1.8.0 - Unauthenicated Arbitrary File Upload & LFD

Published

2025-11-06

Title

Gravity Forms 2.9.18 - 2.9.20 - Unauthenticated Arbitrary File Upload via 'copy_post_image'