Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-4403 PoC — Drag and Drop Multiple File Upload for WooCommerce <= 1.1.6 - Unauthenticated Arbitrary File Upload via upload Function

Source
https://github.com/B1ack4sh/Blackash-CVE-2025-4403
Associated Vulnerability
Title:Drag and Drop Multiple File Upload for WooCommerce <= 1.1.6 - Unauthenticated Arbitrary File Upload via upload Function (CVE-2025-4403)
Description:The Drag and Drop Multiple File Upload for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 1.1.6 due to accepting a user‐supplied supported_type string and the uploaded filename without enforcing real extension or MIME checks within the upload() function. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
Description
CVE-2025-4403
Readme
# CVE-2025-4403 : Unauthenticated Arbitrary File Upload Vulnerability in Drag and Drop Multiple File Upload for WooCommerce 🧬

---

### 🔍 Overview:

* **Title:** Arbitrary File Upload Vulnerability in "Drag and Drop Multiple File Upload for WooCommerce" (WordPress plugin)
* **Affected Versions:** All versions up to **1.1.6**
* **Fixed In:** Version **1.1.7**
* **Discovered By:** RIN MIYACHI
* **Analyzed By:** Wordfence

---

### ⚠️ Technical Impact:

* **Vulnerability Type:** Unauthenticated Arbitrary File Upload (CWE‑434)
* **Attack Vector:** Remote (no authentication required)
* **CVSS v3.1 Score:** 9.8 – **Critical ⚫**
* **Impact:**

  * Upload of arbitrary files (e.g., `.php`)
  * Remote code execution
  * Full server compromise

---

### 🛠️ Mitigation & Recommendations:

1. **Update** the plugin to version **1.1.7** immediately.
2. If not using the plugin, **remove or deactivate** it.
3. **Secure file uploads** by:

   * Enforcing MIME type and extension checks
   * Disabling file execution in upload directories
   * Logging and monitoring upload activity
4. **Restrict permissions** on upload folders (e.g., disable execution).

---

## Usage:

```
usage: python3 CVE-2025-4403.py
```

---

### Script Details:

### Requirements

+ Python 3.x
+ `requests` library

### Installation:

1. Clone the repository:

```
sudo git clone https://github.com/B1ack4sh/Blackash-CVE-2025-4403.git
cd Blackash-CVE-2025-4403
```

2. Install the required Python packages:

```
pip install requests
```

---

### 📝 Summary Table:

| 📛 Field     | 📌 Details                                       |
| ------------ | ------------------------------------------------ |
| Plugin       | Drag & Drop Multiple File Upload for WooCommerce |
| Vulnerable   | Versions ≤ 1.1.6                                 |
| Fixed In     | Version 1.1.7                                    |
| CVSS Score   | 9.8 (Critical)                                   |
| Exploit Type | Unauthenticated Arbitrary File Upload            |
| Risk         | Remote Code Execution, Full Site Compromise      |

---

### ⚠️ Disclaimer:

This script is intended for educational purposes only. Use it responsibly and only on systems for which you have explicit permission. Unauthorized use of this script is illegal and unethical !!!
File Snapshot

 [4.0K]  /data/pocs/9a551ea65bed2dcbe6d1fed60819fd94f064da9a
├── [3.7K]  CVE-2025-4403.py
└── [2.3K]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →