CVE-2021-24123

PowerPress < 8.3.8 - Authenticated Arbitrary File Upload leading to RCE

EPSS 1.6%CWE-434

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 1.6%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

18 Mar 2021Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Arbitrary file upload in the PowerPress WordPress plugin, versions before 8.3.8, did not verify some of the uploaded feed images (such as the ones from Podcast Artwork section), allowing high privilege accounts (admin+) being able to upload arbitrary files, such as php, leading to RCE.

Affected products

Unknown · PowerPress

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://wpscan.com/vulnerability/43aa30bf-eaf8-467a-93a1-78f9bdb37b36