CS Framework <= 7.1 – Authenticated (Subscriber+) Arbitrary File Read | CVE 2024-12036 | Plugin Vulnerabilities

Description

The CS Framework plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 6.9 via the get_widget_settings_json() function. This makes it possible for authenticated attackers, with subscriber-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

Affects Plugins

No known fix

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/5ed1978e-1dd7-45d3-829a-1a75c1789827

Classification

Type

FILE DELETION

OWASP top 10

A6: Security Misconfiguration

CWE

CVSS

Miscellaneous

Original Researcher

Tonn

Verified

No

WPVDB ID

f6b22f59-f0df-4413-a8c9-55f20f1b6520

Timeline

Publicly Published

2025-03-06 (about 1 year ago)

Added

2025-03-11 (about 1 year ago)

Last Updated

2025-03-11 (about 1 year ago)

Other

Published

Title

Published

2025-01-30

Title

Drag and Drop Multiple File Upload – Contact Form 7 < 1.3.8.6 - Limited Arbitrary File Deletion

Published

2025-12-20

Title

WPvivid Backup & Migration < 0.9.121 - Admin+ Arbitrary Directory Creation

Published

2025-04-18

Title

CLEVER - HTML5 Radio Player With History - Shoutcast and Icecast - Elementor Widget Addon < 2.5 - Unauthenticated Arbitrary File Read

Published

2025-11-20

Title

简数采集器 < 2.6.4 - Authenticated (Admin+) Arbitrary File Read

Published

2025-07-06

Title

WP Pipes <= 1.4.3 - Unauthenticated Arbitrary File Deletion