WordPress Plugin Vulnerabilities

User Private Files < 1.1.3 - Subscriber+ Arbitrary File Upload

Description

The plugin does not filter file extensions when letting users upload files on the server, which may lead to malicious code being uploaded.

Proof of Concept

Affects Plugins

Plugin icon
user-private-files
Fixed in 1.1.3

References

CVE
CVE-2022-2356

Miscellaneous

Original Researcher
Raad Haddad of Cloudyrion GmbH
Submitter
Raad Haddad of Cloudyrion GmbH
Submitter twitter
raadfhaddad
Verified
Yes
WPVDB ID
67f3948e-27d4-47a8-8572-616143b9cf43

Timeline

Publicly Published
2022-07-12 (about 3 years ago)
Added
2022-07-12 (about 3 years ago)
Last Updated
2023-04-15 (about 2 years ago)

Other

Published
Title
Published
2025-06-12
Title
FW Food Menu <= 6.0.0 - Unauthenticated Arbitrary File Upload
Published
2021-01-28
Title
Super Forms < 4.9.703 - Unauthenticated PHP File Upload to RCE
Published
2024-10-28
Title
AR For Woocommerce < 7.0 - Unauthenticated Arbitrary File Upload
Published
2024-06-21
Title
Quotes and Tips < 1.45 - Admin+ Arbitrary File Upload
Published
2023-07-14
Title
User Registration < 3.0.2.1 - Subscriber+ Arbitrary File Upload Leading to RCE