WordPress Plugin Vulnerabilities

Customer Reviews for WooCommerce < 5.38.10 - Author+ Arbitrary File Upload

Description

The plugin is vulnerable to arbitrary file uploads due to missing file type validation in the ivole_import_upload_csv AJAX action in all versions up to, and including, 5.38.9. This makes it possible for authenticated attackers, with author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Plugin icon
customer-reviews-woocommerce
Fixed in 5.38.10

References

CVE
CVE-2023-6979
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/4af801db-44a6-4cd3-bd1a-3125490c8c48

Miscellaneous

Original Researcher
Artem Guzhva (hexcat)
Verified
No
WPVDB ID
48a6071b-86b0-41c8-a67e-877dece29a0d

Timeline

Publicly Published
2024-01-09 (about 2 years ago)
Added
2024-01-12 (about 2 years ago)
Last Updated
2024-01-12 (about 2 years ago)

Other

Published
Title
Published
2024-03-18
Title
Tourfic < 2.11.16 - Authenticated (Subscriber+) Arbitrary File Upload
Published
2025-04-03
Title
Woffice Core < 5.4.22 - Authenticated (Subscriber+) Arbitrary File Upload
Published
2024-04-01
Title
EnvíaloSimple: Email Marketing y Newsletters < 2.4 - Arbitrary File Upload via CSRF
Published
2014-08-01
Title
wp-seo-spy-google - ofc_upload_image.php Arbitrary File Upload
Published
2020-12-17
Title
Contact Form 7 < 5.3.2 - Unrestricted File Upload