WordPress Plugin Vulnerabilities

MStore API – Create Native Android & iOS Apps On The Cloud < 4.15.4 - Authenticated (Subscriber+) Limited Arbitrary File Upload

Description

The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_user_profile() function in all versions up to, and including, 4.15.3. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload arbitrary files (not including PHP files) on the affected site's server which may make remote code execution possible. This can be paired with a registration endpoint for unauthenticated users to exploit the issue.

Affects Plugins

Plugin icon
mstore-api
Fixed in 4.15.4

References

CVE
CVE-2024-8242
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/fe3834a6-a6f5-4cc7-951e-a6ada6346b07

Miscellaneous

Original Researcher
stealthcopter
Verified
No
WPVDB ID
ee52f687-7927-4262-97fb-911d44903107

Timeline

Publicly Published
2024-09-12 (about 1 year ago)
Added
2024-09-12 (about 1 year ago)
Last Updated
2024-09-13 (about 1 year ago)

Other

Published
Title
Published
2022-11-21
Title
Booking Calendar < 3.2.2 - Unauthenticated Arbitrary File Upload
Published
2014-08-01
Title
Asset Manager - upload.php Arbitrary Code Execution
Published
2024-05-28
Title
WP STAGING WordPress Backup Plugin – Migration Backup Restore < 3.5.0 - Admin+ Arbitrary File Upload
Published
2014-08-01
Title
vithy - Arbitrary File Upload
Published
2022-04-11
Title
Import WP < 2.4.6 - Admin+ Arbitrary File Upload to RCE