S4E

CVE-2024-6366 Scanner

CVE-2024-6366 scanner - Unrestricted File Upload vulnerability in User Profile Builder

Short Info


Level

High

Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

29 days

Scan only one

Domain, IPv4

Toolbox

-

The User Profile Builder plugin for WordPress is widely used for managing user profiles and user registration on WordPress sites. It provides functionalities such as form customization, user registration, and profile management. This plugin is utilized by WordPress administrators to enhance user interaction and manage user data effectively. Many sites use this plugin to streamline user management without needing complex code modifications. However, vulnerabilities in this plugin can expose WordPress sites to serious security risks.

The vulnerability in User Profile Builder allows unauthenticated users to upload files via the plugin's async upload functionality. This issue arises due to inadequate authorization checks in the file upload process. As a result, malicious users could potentially upload arbitrary files to the server. Exploiting this vulnerability could lead to further security breaches or code execution on the server.

The vulnerability is found in the file upload feature of User Profile Builder plugin versions prior to 3.11.8. The affected endpoint is /wp-admin/async-upload.php, where unauthenticated users can POST a file to this endpoint. The upload functionality lacks proper authorization, allowing users to upload files without authentication. The uploaded file is processed and stored on the server, which could be exploited to upload malicious files.

If exploited, this vulnerability could allow attackers to upload malicious files to the server, which may lead to arbitrary code execution or further compromise of the WordPress site. Malicious files could be used to execute server-side scripts, potentially gaining unauthorized access or control over the server. Additionally, uploaded files might be used to perform other types of attacks or data breaches.

Join S4E to ensure your digital assets are protected from vulnerabilities like CVE-2024-6366. Our platform provides comprehensive scanning and threat exposure management to identify and address critical security issues in your systems. By becoming a member, you gain access to advanced scanning tools, real-time alerts, and expert support to safeguard your assets. Don’t leave your security to chance—trust our platform to keep your systems secure.

References:

Get started to protecting your Free Full Security Scan