CVE-2021-4436

2024-02-0509:15:43

CWE-434

[email protected]

web.nvd.nist.gov

3dprint lite

wordpress plugin

cve-2021-4436

file upload vulnerability

unauthenticated

nvd

web server security

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.188 Low

EPSS

Percentile

96.3%

JSON

The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlite_handle_upload AJAX action , allowing unauthenticated users to upload arbitrary file to the web server. However, there is a .htaccess, preventing the file to be accessed on Web servers such as Apache.

Affected configurations

Vulners

NVD

Node

wp3dprinting3dprint_liteRange<1.9.1.5

VendorProductVersionCPE
wp3dprinting3dprint_lite*cpe:2.3:a:wp3dprinting:3dprint_lite:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wp3dprinting	3dprint_lite	*	cpe:2.3:a:wp3dprinting:3dprint_lite::::::::

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "3DPrint Lite",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "1.9.1.5"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]