Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) < 2.8.8 – Missing Authorization to Unauthenticated Media Upload | CVE 2024-1169 | Plugin Vulnerabilities

Description

The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) plugin for WordPress is vulnerable to unauthorized media upload due to a missing capability check on the buddyforms_upload_handle_dropped_media function in all versions up to, and including, 2.8.7. This makes it possible for unauthenticated attackers to upload media files.

Affects Plugins

Fixed in 2.8.8

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/6d14a90d-65ea-45da-956b-0735e2e2b538

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Lucio Sá

Verified

No

WPVDB ID

71e4f4c1-20ba-42ac-8ac7-e798c4bc611d

Timeline

Publicly Published

2024-03-06 (about 1 year ago)

Added

2024-03-06 (about 1 year ago)

Last Updated

2024-03-06 (about 1 year ago)

Other

Published

Title

Published

2024-09-03

Title

The Ultimate WordPress Toolkit – WP Extended < 3.0.9 - Authenticated (Subscriber+) Arbitrary Options Update

Published

2024-06-03

Title

Upload Fields for WPForms <= 1.0.2 - Missing Authorization

Published

2025-12-04

Title

Happy Addons for Elementor < 3.20.4 - Missing Authorization

Published

2022-04-11

Title

Wbcom Designs Plugins - Subscriber+ Arbitrary Plugin Installation, Activation and Deactivation

Published

2025-12-18

Title

DesignThemes LMS Addon <= 2.6 - Missing Authorization