WordPress Simple File List Arbitrary File Upload Vulnerability (CWE-434)

Critical Vulnerability Information Vulnerability Overview Title: Arbitrary file upload in Simple File List plugin for WordPress Release Date: 2020-04-27 Risk Level: High Patch Available: Yes Number of Vulnerabilities: 1 CVE-ID: N/A CWE-ID: CWE-434 Exploit Vector: Network Public Exploit: N/A Affected Software: Simple File List (WordPress plugin) Vendor: Mitchell Bennis - Element Engage, LLC Security Advisory Vulnerability Type: Arbitrary file upload EUVD-ID: EUV27343 CVSSv3.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:HV/I:H/WA:H/SC:N/SI:NSA/NIE:UIU:Amber] CVE-ID: N/A CWE-ID: CWE-434 - Unrestricted Upload of File with Dangerous Type Exploitability: No Description This vulnerability allows remote attackers to compromise vulnerable systems by exploiting insufficient validation of file types during the file upload process. Attackers can upload files containing PHP code (e.g., with a .php extension disguised as an image file), and then send a second request to move the .php file to any location on the server and execute it. Mitigation Install the update from the vendor's website. Affected Software Versions Simple File List: 1.0.1 - 4.2.2 CPE2.3 External Links https://wpvulndb.com/vulnerabilities/10139 https://plugins.trac.wordpress.org/changeset/2286920/simple-file-list http://simplefilelist.com/ Q&A Can this vulnerability be exploited remotely over the internet? Yes, this vulnerability can be exploited remotely by unauthenticated attackers over the internet. Is there any known malware exploiting this vulnerability? No, we have not found any malware exploiting this vulnerability.

Goal Reached Thanks to every supporter — we hit 100%!

WordPress Simple File List Arbitrary File Upload Vulnerability (CWE-434)