logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

WordPress <= 4.9.6 - Authenticated Arbitrary File Deletion

Description

This can lead to code execution if the wp-config.php file is deleted, forcing WordPress to start the installation process.

Can be exploited by any user who is able to edit uploaded media.

Affects WordPresses

3.8.1

Fixed in version 4.9.7

3.8

Fixed in version 4.9.7

3.7.1

Fixed in version 3.7.27

3.6

No known fix

3.5.2

No known fix

3.5.1

No known fix

3.5

No known fix

3.4.2

No known fix

3.4.1

No known fix

3.4

No known fix

References

CVE

CVE-2018-12895

URL

https://blog.ripstech.com/2018/wordpress-file-delete-to-code-execution/

URL

http://blog.vulnspy.com/2018/06/27/Wordpress-4-9-6-Arbitrary-File-Delection-Vulnerbility-Exploit/

URL

https://github.com/WordPress/WordPress/commit/c9dce0606b0d7e6f494d4abe7b193ac046a322cd

URL

https://wordpress.org/news/2018/07/wordpress-4-9-7-security-and-maintenance-release/

URL

https://www.wordfence.com/blog/2018/07/details-of-an-additional-file-deletion-vulnerability-patched-in-wordpress-4-9-7/

Classification

Type

UNKNOWN

Miscellaneous

Submitter

Ryan

Submitter twitter

ethicalhack3r

Verified

No

WPVDB ID

42ab2bd9-bbb1-4f25-a632-1811c5130bb4

Timeline

Publicly Published

2018-06-27 (about 3 years ago)

Added

2018-06-27 (about 3 years ago)

Last Updated

2020-09-22 (about 10 months ago)

Our Other Services

WPScan WordPress Security Plugin