CVE-2020-36705 — AI Deep Analysis Summary

🚨 **Essence**: Arbitrary File Upload via missing validation in `_ning_upload_image`. 💥 **Consequences**: Attackers can upload malicious files, leading to **Remote Code Execution (RCE)** and full server compromise.

🛡️ **Root Cause**: **CWE-434** (Unrestricted Upload of File with Dangerous Type). The plugin fails to validate file types during upload, allowing dangerous extensions.

📦 **Affected**: WordPress Plugin **Adning Advertising** by vendor **tunafish**. Versions **up to and including 1.5.5** are vulnerable.

💀 **Attacker Capabilities**: Unauthenticated access allows uploading **arbitrary files**. This enables **RCE**, giving attackers full control over the server and data.

🔓 **Threshold**: **LOW**. No authentication (PR:N), low complexity (AC:L), and no user interaction (UI:N) required. Extremely easy to exploit.

🔍 **Exploitation**: **YES**. Public PoCs exist (e.g., Nuclei templates). Actively exploited in the wild, as noted by security blogs.

🔎 **Self-Check**: Scan for **Adning Advertising v1.5.5** or older. Look for the `_ning_upload_image` endpoint. Use tools like **Nuclei** with CVE-2020-36705 templates.

🩹 **Fix**: **YES**. Update the plugin to the latest version. Official patches were released by Wordfence and the vendor to address this critical flaw.

🚧 **No Patch?**: Disable the plugin immediately. If essential, restrict upload directories via `.htaccess` or WAF rules to block PHP/executable extensions.

⚡ **Urgency**: **CRITICAL**. CVSS Score is **9.8** (High). Immediate patching required due to active exploitation and RCE potential.