CVE-2024-10571 — AI Deep Analysis Summary

🚨 **Essence**: Unauthenticated Local File Inclusion (LFI) via the 'source' parameter. <br>💥 **Consequences**: Attackers can include & execute arbitrary PHP files on the server.…

🛡️ **Root Cause**: CWE-98 (Improper Control of Filename for Include/Require). <br>🔍 **Flaw**: The plugin fails to sanitize the 'source' input, allowing direct file path manipulation.

📦 **Affected**: Chartify – WordPress Chart Plugin. <br>📉 **Versions**: 2.9.5 and earlier. <br>🏢 **Vendor**: ays-pro.

🕵️ **Hackers Can**: Execute arbitrary PHP code. <br>📂 **Access**: Obtain sensitive data, bypass authentication, and achieve Remote Code Execution (RCE). <br>🔓 **Privileges**: Unauthenticated access required.

📉 **Threshold**: LOW. <br>🔑 **Auth**: None required (Unauthenticated). <br>🌐 **Network**: Remote (AV:N). <br>⚡ **Complexity**: Low (AC:L).

🔥 **Exploitation**: YES. <br>📜 **PoC Available**: Yes, public PoCs exist on GitHub (e.g., RandomRobbieBF, ProjectDiscovery Nuclei templates). <br>⚠️ **Wild Exploit**: High risk of automated scanning.

🔍 **Self-Check**: Scan for 'source' parameter injection in Chartify plugin requests. <br>🛠️ **Tools**: Use Nuclei templates or custom scripts targeting the 'source' endpoint.…

🩹 **Fix**: Update to version **2.9.6** or later. <br>📝 **Reference**: WordPress Trac shows fixes in 2.9.6 release. <br>✅ **Status**: Patched.

🚧 **No Patch?**: Disable the plugin immediately. <br>🔒 **Mitigation**: Restrict file access via .htaccess or WAF rules blocking 'source' parameter manipulation. <br>👮 **Monitor**: Watch for suspicious PHP execution logs.

🚨 **Urgency**: CRITICAL. <br>🔥 **Priority**: P1. <br>⏳ **Reason**: CVSS 9.8 (High), Unauthenticated, RCE possible. Patch immediately to prevent server takeover.