Export Import Menus < 1.9.0 – Authenticated (Subscriber+) Arbitrary File Upload | CVE 2023-34385 | Plugin Vulnerabilities

Description

The Export Import Menus plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadMenusJson() function in versions up to, and including, 1.8.0. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

export-import-menus

Fixed in 1.9.0

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/d74efb03-4a1c-4163-bd79-ef17975a609e

Miscellaneous

Original Researcher

Emili Castells

Verified

No

WPVDB ID

e15600b1-7944-4253-ac4d-f743b4065eda

Timeline

Publicly Published

2023-09-04 (about 2 years ago)

Added

2023-11-23 (about 2 years ago)

Last Updated

2023-12-03 (about 2 years ago)

Other

Published

Title

Published

2023-09-26

Title

Welcart e-Commerce < 2.8.22 - Editor+ Arbitrary File Upload

Published

2025-12-19

Title

File Uploader for WooCommerce < 1.0.4 - Unauthenticated Arbitrary File Upload via add-image-data

Published

2020-08-29

Title

Quiz and Survey Master < 7.0.2 - Unauthenticated Arbitrary File Upload

Published

2024-12-11

Title

Video & Photo Gallery for Ultimate Member < 1.1.1 - Authenticated (Subscriber+) Arbitrary File Upload

Published

2025-08-04

Title

Shopo <= 1.1.4 - Authenticated (Contributor+) Arbitrary File Upload