Elite Booster for WooCommerce < 7.1.8 – Authenticated (Subscriber+) Arbitrary File Upload | CVE 2024-1986 | Plugin Vulnerabilities

Description

The Booster Elite for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the wc_add_new_product() function in all versions up to, and including, 7.1.7. This makes it possible for customer-level attackers, and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. This is only exploitable when the user product upload functionality is enabled.

Affects Plugins

booster-elite-for-woocommerce

Fixed in 7.1.8

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/c9c2fb7f-a05b-4852-97eb-7befe880d703

Miscellaneous

Original Researcher

Christiaan Swiers (YouGina)

Verified

No

WPVDB ID

7611e320-9cb8-40f5-aee9-67d62a8b2fbc

Timeline

Publicly Published

2024-03-07 (about 2 years ago)

Added

2024-03-07 (about 2 years ago)

Last Updated

2024-03-07 (about 2 years ago)

Other

Published

Title

Published

2024-10-30

Title

AI Power: Complete AI Pack < 1.8.90 - Unauthenticated Arbitrary File Upload

Published

2025-04-08

Title

WP Remote Thumbnail <= 1.3.2 - Contributor+ Arbitrary File Upload

Published

2023-12-16

Title

EditorsKit < 1.40.4 - Authenticated (Administrator+) Arbitrary File Upload

Published

2014-08-01

Title

LISL Last Image Slider 1.0 - Shell Upload

Published

2022-11-28

Title

JobBoardWP < 1.2.2 - Unauthenticated Arbitrary File Upload