Folders < 2.9.3 – Authenticated (Author+) Arbitrary File Upload in handle_folders_file_upload | CVE 2023-40204 | Plugin Vulnerabilities

Description

The Folders plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the handle_folders_file_upload function in versions up to, and including, 2.9.2. This makes it possible for authenticated attackers, with author-level permissions or above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Fixed in 2.9.3

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/9ab28410-76c5-43cb-b87a-c99f8867167c

Miscellaneous

Original Researcher

Rafie Muhammad

Verified

No

WPVDB ID

8313951f-d12f-4b35-955d-9d702fb5172f

Timeline

Publicly Published

2023-08-28 (about 2 years ago)

Added

2023-11-24 (about 2 years ago)

Last Updated

2023-11-27 (about 2 years ago)

Other

Published

Title

Published

2024-08-05

Title

Blox Page Builder <= 1.0.65 - Authenticated (Contributor+) Arbitrary File Upload

Published

2025-12-04

Title

PostGallery <= 1.12.5 - Authenticated (Subscriber+) Arbitrary File Upload

Published

2024-10-14

Title

WordPress Gallery Plugin – Limb Image Gallery <= 1.5.7 - Authenticated (Subscriber+) Arbitrary File Upload

Published

2025-12-12

Title

Webhooks < 3.3.9 - Unauthenticated Arbitrary File Upload

Published

2024-05-06

Title

Startklar Elementor Addons < 1.7.14 - Unauthenticated Arbitrary File Upload