Product Addons & Fields for WooCommerce < 32.0.19 – Unauthenticated Arbitrary File Upload via ppom_upload_file | CVE 2024-3962 | Plugin Vulnerabilities

Description

The Product Addons & Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ppom_upload_file function in all versions up to, and including, 32.0.18. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible. Successful exploitation requires the PPOM Pro plugin to be installed along with a WooCommerce product that contains a file upload field to retrieve the correct nonce.

Affects Plugins

woocommerce-product-addon

Fixed in 32.0.19

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/4f95bcc3-354e-4016-9a17-945569b076b6

Miscellaneous

Original Researcher

andrea bocchetti

Verified

No

WPVDB ID

dc2166cd-55a7-4cc3-84db-43395339c398

Timeline

Publicly Published

2024-04-25 (about 1 year ago)

Added

2024-04-25 (about 1 year ago)

Last Updated

2024-04-25 (about 1 year ago)

Other

Published

Title

Published

2025-04-23

Title

PowerPress Podcasting plugin by Blubrry < 11.12.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2012-04-03

Title

Another WordPress Classifieds < 2.0 - Unspecified Image Upload

Published

2024-08-12

Title

Bit Form Pro < 2.8.0 - Authenticated (Subscriber+) Arbitrary File Upload

Published

2014-08-01

Title

N-Media File Uploader < 2.0 Arbitrary File Upload

Published

2025-01-20

Title

Post/Page Copying Tool to Export and Import post/page for Cross site Migration < 2.0.4 - Authenticated (Contributor+) Arbitrary File Upload