CVE Vulnerability

CVE-2023-0039

The User Post Gallery - UPG plugin for WordPress is vulnerable to authorization bypass which leads to remote command execution due to the use of a nopriv AJAX action and user supplied function calls and parameters in versions up to, and including 2.19. This makes it possible for unauthenticated attackers to call arbitrary PHP functions and perform actions like adding new files that can be webshells and updating the site's options to allow anyone to register as an administrator.

9.8 /10

CVSS v3.0 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://plugins.trac.wordpress.org/browser/wp-upg/trunk/wp-upg.php#L723 Third Party Advisory
https://www.wordfence.com/threat-intel/vulnerabilities/id/7c0d7743-14f5-4fdd-a67b-b1f95dbe0f46 Broken Link Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:odude:user_post_gallery:*:*:*:*:*:wordpress:*:*
Information

Published : 2023-01-03 03:15

Updated : 2023-01-10 01:50

NVD link : CVE-2023-0039

Mitre link : CVE-2023-0039

Products Affected

Odude

User Post Gallery

CWE
CWE-77