WordPress Plugin Vulnerabilities

GutenKit < 2.1.1 - Unauthenticated Arbitrary File Upload

Description

The GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the install_and_activate_plugin_from_external() function (install-active-plugin REST API endpoint) in all versions up to, and including, 2.1.0. This makes it possible for unauthenticated attackers to install and activate arbitrary plugins, or utilize the functionality to upload arbitrary files spoofed like plugins.

Affects Plugins

Plugin icon
gutenkit-blocks-addon
Fixed in 2.1.1

References

CVE
CVE-2024-9234
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/e44c5dc0-6bf6-417a-9383-b345ff57ac32

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
9.8 (critical)

Miscellaneous

Original Researcher
Sean Murphy
Verified
No
WPVDB ID
d74893b8-0374-4c2c-8c1c-d079b9748854

Timeline

Publicly Published
2024-10-10 (about 1 year ago)
Added
2024-10-10 (about 1 year ago)
Last Updated
2024-10-11 (about 1 year ago)

Other

Published
Title
Published
2025-04-15
Title
JetTricks < 1.5.1.1 - Missing Authorization
Published
2025-06-05
Title
診断ジェネレータ作成プラグイン <= 1.4.16 - Missing Authorization
Published
2025-06-25
Title
Post Carousel Slider for Elementor < 1.7.0 - Authenticated (Subscriber+) Missing Authorization via process_wbelps_promo_form Function
Published
2025-03-31
Title
PostmarkApp Email Integrator <= 2.4 - Missing Authorization
Published
2024-04-12
Title
Welcart e-Commerce < 2.10.0 - Missing Authorization