WordPress Plugin Vulnerabilities

BookingPress < 1.0.77 - Authenticated (Administrator+) Arbitrary File Upload

Description

The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on the 'bookingpress_process_upload' function in versions up to, and including, 1.0.76. This makes it possible for authenticated attackers with administrator-level capabilities or above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Plugin icon
bookingpress-appointment-booking
Fixed in 1.0.77

References

CVE
CVE-2023-6219
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/710b8e4e-01de-4e99-8cf2-31abc2419b29

Miscellaneous

Original Researcher
István Márton
Verified
No
WPVDB ID
72b08b35-036d-4b4f-bf2a-52b94d171fde

Timeline

Publicly Published
2023-11-27 (about 2 years ago)
Added
2023-11-28 (about 2 years ago)
Last Updated
2024-01-22 (about 2 years ago)

Other

Published
Title
Published
2014-08-01
Title
Magnitudo - Arbitrary File Upload
Published
2023-12-18
Title
Essential Real Estate < 4.4.0 - Subscriber+ Arbitrary File Upload
Published
2014-05-20
Title
NextGEN Gallery < 2.0.66 - Arbitrary File Upload
Published
2024-04-05
Title
Import XML and RSS Feeds < 2.1.6 - Authenticated (Administrator+) Arbitrary File Upload
Published
2015-03-29
Title
VideoWhisper Video Presentation 3.31.17 - Remote File Upload