WordPress Plugin Vulnerabilities

ArForms < 6.6 - Unauthenticated RCE

Description

The plugin allows unauthenticated users to modify uploaded files in such a way that PHP code can be uploaded when an upload file input is included on a form

Proof of Concept

Affects Plugins

Plugin icon
arforms
Fixed in 6.6

References

CVE
CVE-2024-4620

Classification

Type
RCE
OWASP top 10
A1: Injection
CWE
CWE-94
CVSS
9.8 (critical)

Miscellaneous

Original Researcher
mgthuramoemyint
Submitter
mgthuramoemyint
Submitter twitter
mgthuramoemyint
Verified
Yes
WPVDB ID
dc34dc2d-d5a1-4e28-8507-33f659ead647

Timeline

Publicly Published
2024-05-17 (about 1 year ago)
Added
2024-05-17 (about 1 year ago)
Last Updated
2024-05-17 (about 1 year ago)

Other

Published
Title
Published
2017-09-16
Title
VaultPress 1.89-1.9 - Unauthenticated RCE
Published
2025-05-22
Title
TableOn <= 1.0.4.2 - Unauthenticated Arbitrary Shortcode Execution
Published
2024-01-03
Title
LearnPress < 4.2.5.8 - Unauthenticated Command Injection
Published
2024-07-10
Title
WPCS < 1.2.0.4 - Unauthenticated Arbitrary Shortcode Execution
Published
2024-10-13
Title
Contact Form by Supsystic < 1.7.29 - Authenticated (Admin+) Remote Code Execution