Booster for WooCommerce < 7.2.5 – Unauthenticated Double Extension Arbitrary File Upload | CVE 2024-13342 | Plugin Vulnerabilities

Description

The Booster for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'add_files_to_order' function in all versions up to, and including, 7.2.4. This makes it possible for unauthenticated attackers to upload arbitrary files with double extensions on the affected site's server which may make remote code execution possible. This is only exploitable on select instances where the configuration will execute the first extension present.

Affects Plugins

woocommerce-jetpack

Fixed in 7.2.5

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/5ac8a125-121c-4392-846e-625726043972

Miscellaneous

Original Researcher

lucky_buddy

Verified

No

WPVDB ID

dacae794-2d77-4153-8441-15e785f5dce6

Timeline

Publicly Published

2025-08-28 (about 9 months ago)

Added

2025-08-28 (about 9 months ago)

Last Updated

2025-08-29 (about 9 months ago)

Other

Published

Title

Published

2025-01-07

Title

4ECPS Web Forms <= 0.2.18 - Unauthenticated Arbitrary File Upload

Published

2021-04-11

Title

Business Directory Plugin < 5.11.1 - Authenticated PHP4 Upload to RCE

Published

2024-01-08

Title

Barcode Scanner with Inventory & Order Manager < 1.5.2 - Unauthenticated Arbitrary File Upload via uploadFile

Published

2022-04-18

Title

VikBooking Hotel Booking Engine & PMS < 1.5.4 - Unauthenticated Arbitrary File Upload

Published

2014-08-01

Title

wp-3dflick-slideshow - Arbitrary File Upload