WordPress Plugin Vulnerabilities

Starter Templates < 4.4.42 - Author+ Arbitrary File Upload via WXR Upload Bypass

Description

The plugin is vulnerable to arbitrary file upload due to insufficient file type validation detecting WXR files, allowing double extension files to bypass sanitization while being accepted as a valid WXR file. This makes it possible for authenticated attackers, with author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Plugin icon
astra-sites
Fixed in 4.4.42

References

CVE
CVE-2025-13065
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/439e4c99-8f34-4e66-9d86-c0cbb8cf6da0

Miscellaneous

Original Researcher
mikemyers
Verified
No
WPVDB ID
a6dcda12-a67f-4a81-9d30-0f2d886978fa

Timeline

Publicly Published
2025-12-05 (about 5 months ago)
Added
2025-12-08 (about 5 months ago)
Last Updated
2025-12-08 (about 5 months ago)

Other

Published
Title
Published
2024-04-22
Title
ActiveDEMAND < 0.2.42 - Unauthenticated Arbitrary File Upload
Published
2025-01-13
Title
Groundhogg < 3.7.3.6 - Authenticated (Author+) Arbitrary File Upload via gh_big_file_upload Function
Published
2014-08-01
Title
Famous 2.0.5 - Shell Upload
Published
2012-06-05
Title
Member Private Conversation < 1.4 - Unrestricted File Upload
Published
2015-03-16
Title
Reflex Gallery <= 3.1.3 - Arbitrary File Upload