CVE-2024-6366 Scanner
CVE-2024-6366 scanner - Unrestricted File Upload vulnerability in User Profile Builder
Short Info
Level
High
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
29 days
Scan only one
Domain, IPv4
Toolbox
-
The User Profile Builder plugin for WordPress is widely used for managing user profiles and user registration on WordPress sites. It provides functionalities such as form customization, user registration, and profile management. This plugin is utilized by WordPress administrators to enhance user interaction and manage user data effectively. Many sites use this plugin to streamline user management without needing complex code modifications. However, vulnerabilities in this plugin can expose WordPress sites to serious security risks.
The vulnerability in User Profile Builder allows unauthenticated users to upload files via the plugin's async upload functionality. This issue arises due to inadequate authorization checks in the file upload process. As a result, malicious users could potentially upload arbitrary files to the server. Exploiting this vulnerability could lead to further security breaches or code execution on the server.
The vulnerability is found in the file upload feature of User Profile Builder plugin versions prior to 3.11.8. The affected endpoint is /wp-admin/async-upload.php
, where unauthenticated users can POST a file to this endpoint. The upload functionality lacks proper authorization, allowing users to upload files without authentication. The uploaded file is processed and stored on the server, which could be exploited to upload malicious files.
If exploited, this vulnerability could allow attackers to upload malicious files to the server, which may lead to arbitrary code execution or further compromise of the WordPress site. Malicious files could be used to execute server-side scripts, potentially gaining unauthorized access or control over the server. Additionally, uploaded files might be used to perform other types of attacks or data breaches.
Join S4E to ensure your digital assets are protected from vulnerabilities like CVE-2024-6366. Our platform provides comprehensive scanning and threat exposure management to identify and address critical security issues in your systems. By becoming a member, you gain access to advanced scanning tools, real-time alerts, and expert support to safeguard your assets. Don’t leave your security to chance—trust our platform to keep your systems secure.
References: