WordPress Plugin Vulnerabilities

eaSYNC < 1.1.16 - Unauthenticated Arbitrary File Upload

Description

The plugin suffers from insufficient input validation which leads to arbitrary file upload and subsequently to remote code execution. An AJAX action accessible to unauthenticated users is affected by this issue. An allowlist of valid file extensions is defined but is not used during the validation steps.

Proof of Concept

Affects Plugins

Plugin icon
easync-booking
Fixed in 1.1.16

References

CVE
CVE-2022-1952

Miscellaneous

Original Researcher
cydave
Submitter
cydave
Submitter website
https://cyllective.com/
Submitter twitter
cyllective
Verified
Yes
WPVDB ID
ecf61d17-8b07-4cb6-93a8-64c2c4fbbe04

Timeline

Publicly Published
2022-06-15 (about 3 years ago)
Added
2022-06-15 (about 3 years ago)
Last Updated
2023-03-15 (about 2 years ago)

Other

Published
Title
Published
2024-11-05
Title
WP JobSearch < 2.6.8 - Unauthenticated Arbitrary File Upload
Published
2021-06-24
Title
ZoomSounds < 6.05 - Unauthenticated Arbitrary File Upload
Published
2020-08-29
Title
Quiz and Survey Master < 7.0.2 - Unauthenticated Arbitrary File Upload
Published
2024-05-07
Title
AI Engine: ChatGPT Chatbot < 2.2.70 - Authenticated (Editor+) Arbitrary File Upload
Published
2011-02-17
Title
User Photo - Component Remote File Upload