WordPress Plugin Vulnerabilities
Import XML and RSS Feeds < 2.1.5 - Unauthenticated RCE
Description
The plugin contains a web shell, allowing unauthenticated attackers to perform RCE. The plugin/vendor was not compromised and the files are the result of running a PoC for a previously reported issue (https://wpscan.com/vulnerability/d4220025-2272-4d5f-9703-4b2ac4a51c42) and not deleting the created files when releasing the new version.
Proof of Concept
https://example.com/wp-content/plugins/import-xml-feed/uploads/169227090864de013cac47b.php?cmd=whoami
Affects Plugins
References
CVE
Classification
Type
RCE
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
Enrico Marcolini
Submitter
Enrico Marcolini
Submitter website
Submitter twitter
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2023-08-28 (about 8 months ago)
Added
2023-08-30 (about 8 months ago)
Last Updated
2023-08-30 (about 8 months ago)