NitroPack < 1.16.8 – Unauthenticated Arbitrary Shortcode Execution | CVE 2024-43922 | Plugin Vulnerabilities

Description

The The NitroPack – Caching & Speed Optimization for Core Web Vitals, Defer CSS & JS, Lazy load Images and CDN plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.16.7. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

Affects Plugins

Fixed in 1.16.8

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/2a0f539c-5d1d-4e1b-9a4b-719c096ba23c

Classification

Type

ACCESS CONTROLS

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Rafie Muhammad

Verified

No

WPVDB ID

c3dae772-a15c-4c5a-a578-e78b43b017ea

Timeline

Publicly Published

2024-08-26 (about 1 year ago)

Added

2024-09-10 (about 1 year ago)

Last Updated

2024-09-10 (about 1 year ago)

Other

Published

Title

Published

2021-01-28

Title

uListing < 1.7 - Unauthenticated WordPress Options Change

Published

2024-01-24

Title

Views for WPForms < 3.2.3 - Cross-Site Request Forgery via save_view

Published

2021-08-31

Title

WooCommerce Dynamic Pricing & Discounts < 2.4.2 - Unauthenticated Settings Export

Published

2022-01-06

Title

IP2Location Country Blocker < 2.26.5 - Subscriber+ Arbitrary Country Ban

Published

2021-05-26

Title

Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Update and Retrieve Wildcard Value