WP Photo Album Plus < 8.9.01.001 – Unauthenticated Arbitrary Shortcode Execution via getshortcodedrenderedfenodelay | CVE 2024-10958 | Plugin Vulnerabilities

Description

The The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution via getshortcodedrenderedfenodelay AJAX action in all versions up to, and including, 8.8.08.007 . This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

Affects Plugins

wp-photo-album-plus

Fixed in 8.9.01.001

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/53bb0871-343a-4299-9902-682c422152d1

Classification

Type

RCE

OWASP top 10

CWE

CVSS

Miscellaneous

Original Researcher

Arkadiusz Hydzik

Verified

No

WPVDB ID

3f2b94d0-1848-4e01-abf1-a6224c2361ff

Timeline

Publicly Published

2024-11-10 (about 1 year ago)

Added

2024-11-10 (about 1 year ago)

Last Updated

2024-11-10 (about 1 year ago)

Other

Published

Title

Published

2024-06-20

Title

WishList Member X < 3.26.7 - Subscriber+ Remote Code Execution

Published

2024-08-07

Title

WooCommerce Product Table Lite < 3.8.6 - Unauthenticated Arbitrary Shortcode Execution

Published

2014-08-01

Title

Kernel Theme - functions/upload-h&ler.php File Upload Remote Code Execution

Published

2014-08-01

Title

DZS Video Gallery - upload.php File Upload Remote Code Execution

Published

2023-09-29

Title

OpenHook < 4.3.1 - Subscriber+ Remote Code Execution