← volver
CVE-2022-4047

Return Refund and Exchange For WooCommerce < 4.0.9 - Unauthenticated Arbitrary File Upload

CVSS 9.8 CRITICALEPSS 6.2%
The Return Refund and Exchange For WooCommerce WordPress plugin before 4.0.9 does not validate attachment files to be uploaded via an AJAX action available to unauthenticated users, which could allow them to upload arbitrary files such as PHP and lead to RCE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
Unknown · Return Refund and Exchange For WooCommerce
PoCs públicas encontradas3
githubgithub.com/im-hanzou/WooRefer1githubgithub.com/entroychang/CVE-2022-40470cve_referencewpscan.com/vulnerability/8965a87c-5fe5-4b39-88f3-e00966ca1d94no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://wpscan.com/vulnerability/8965a87c-5fe5-4b39-88f3-e00966ca1d94