Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-4596

Published: 30/08/2023 Updated: 07/11/2023
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Incsub

Vulnerability Summary

The Forminator plugin for WordPress is vulnerable to arbitrary file uploads due to file type validation occurring after a file has been uploaded to the server in the upload_post_image() function in versions up to, and including, 1.24.6. This makes it possible for unauthenticated malicious users to upload arbitrary files on the affected site's server which may make remote code execution possible.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

incsub forminator

Vendor Advisories

Check Point Security Alerts: WordPress Multiple Plugins Arbitrary File Upload (CVE-2021-39352; CVE-2022-3416; CVE-2022-3912; CVE-2022-3982; CVE-2022-3989; CVE-2022-4047; CVE-2022-4061; CVE-2023-2068; CVE-2023-4596)
Check Point Reference: CPAI-2022-1142 Date Published: 29 Jan 2023 Severity: Critical ...

Github Repositories

https://github.com/E1A/CVE-2023-4596

PoC Script for CVE-2023-4596, unauthenticated Remote Command Execution through arbitrary file uploads.

CVE-2023-4596 PoC Script for CVE-2023-4596, unauthenticated Remote Command Execution through arbitrary file uploads Video of PoC being used Nuclei Template News article WordFence NVD Nist Summary A critical vulnerability has been discovered in the WordPress plugin Forminator, which enables an unauthorized attacker to upload arbitrary files to a server The initial proof

https://github.com/AlabamicHero/caldera_sandcat-usecase

special thanks to E1A for the POC of the CVE Exploit found here: https://github.com/E1A/CVE-2023-4596

Special thanks to E1A for POC found here: githubcom/E1A/CVE-2023-4596

https://github.com/hung1111234/KhaiThacLoHongPhanMem

Hướng Dẫn Xây Dựng Môi Trường Khai Thác Lỗ Hổng CVE Trên Wordpress Hướng dẫn này giúp triển khai môi trường nhằm khai thác thành công ba lỗ hổng CVE lần lượt là CVE-2023-2546, CVE-2023-3460, CVE-2023-4596 tồn tại trên các Plugin WP User Switch 102, Ultim

https://github.com/LUUANHDUC/KhaiThacLoHongPhanMem

Hướng Dẫn Xây Dựng Môi Trường Khai Thác Lỗ Hổng CVE Trên Wordpress Hướng dẫn này giúp triển khai môi trường nhằm khai thác thành công ba lỗ hổng CVE lần lượt là CVE-2023-2546, CVE-2023-3460, CVE-2023-4596 tồn tại trên các Plugin WP User Switch 102, Ultim

References

https://www.exploit-db.com/exploits/51664https://www.wordfence.com/threat-intel/vulnerabilities/id/9cd87da6-1f4c-4a15-8ebb-6e0f8ef72513?source=cvehttps://plugins.trac.wordpress.org/changeset/2954409/forminator/trunk/library/fields/postdata.phphttps://nvd.nist.govhttps://github.com/E1A/CVE-2023-4596https://advisories.checkpoint.com/defense/advisories/public/2023/cpai-2022-1142.html
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002CVE-2006-4304CVE-2024-4336CVE-2024-33437CVE-2024-4340CVE-2024-27956privilegeinsecure direct object referenceXSSitem search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook