WordPress Plugin Vulnerabilities

Sync Posts <= 1.0 - Authenticated (Subscriber+) Arbitrary File Upload

Description

The Sync Posts plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'scwp_sync_posts_func' and 'scwp_download_posts_content_images' functions in all versions up to, and including, 1.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Plugin icon
sync-posts
No known fix

References

CVE
CVE-2025-32579
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/bdd9045e-5869-446b-9a6e-4c6766b91d05

Miscellaneous

Original Researcher
João Pedro Soares de Alcântara
Verified
No
WPVDB ID
61dd5022-e800-4b61-9d8b-fd40603e6b91

Timeline

Publicly Published
2025-04-10 (about 11 months ago)
Added
2025-04-15 (about 11 months ago)
Last Updated
2025-04-30 (about 11 months ago)

Other

Published
Title
Published
2012-01-23
Title
AllWebMenus Shell Upload < 1.1.9 - Shell Upload
Published
2023-12-16
Title
EditorsKit < 1.40.4 - Authenticated (Administrator+) Arbitrary File Upload
Published
2021-06-29
Title
Super Progressive Web Apps < 2.1.13 - Authenticated (High Privileged) Arbitrary File Upload to RCE
Published
2014-08-01
Title
sintic_gallery - Arbitrary File Upload
Published
2014-08-01
Title
DP Thumbnail 1.0 - Shell Upload