WordPress Plugin Vulnerabilities

WooCommerce Easy Checkout Field Editor, Fees & Discounts < 3.5.13 - Unauthenticated Arbitrary File Upload

Description

The SysBasics Easy Checkout Field Editor, Fees & Discounts plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 3.5.12. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Plugin icon
phppoet-checkout-fields
Fixed in 3.5.13

References

CVE
CVE-2024-25925
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/4fb0195a-077e-4f43-9294-1e5ecad7eb82

Miscellaneous

Original Researcher
Dave Jong
Verified
No
WPVDB ID
c5b97cbb-5cb2-479d-9be6-624e29820a39

Timeline

Publicly Published
2024-02-14 (about 2 years ago)
Added
2024-02-20 (about 2 years ago)
Last Updated
2024-02-20 (about 2 years ago)

Other

Published
Title
Published
2024-10-29
Title
FileOrganizer < 1.1.0 - Authenticated (Subscriber+) Arbitrary File Upload
Published
2025-07-04
Title
Groundhogg < 4.2.2 - Authenticated (Sales Rep+) Arbitrary File Upload
Published
2022-03-28
Title
Tatsu < 3.3.12 - Unauthenticated RCE
Published
2024-11-11
Title
Instant Image Generator < 1.5.3 - Unauthenticated Arbitrary File Upload
Published
2020-09-01
Title
File Manager 6.0-6.9 - Unauthenticated Arbitrary File Upload leading to RCE