Lucene search

K

Veracode Vulnerability DatabaseVERACODE:13367

HistoryFeb 21, 2019 - 7:48 a.m.

Arbitrary Code Execution

2019-02-2107:48:00

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

9

EPSS

0.943

Percentile

99.3%

wordpress is vulnerable to arbitrary code execution. The vulnerability exists in the _wp_attached_file post meta entry when a user with author privilege passes a malicious image with exif metadata causing the Post Meta entry to change to an arbitrary substring such as a .jpg?file.php .

References

packetstormsecurity.com/files/152396/WordPress-5.0.0-crop-image-Shell-Upload.html

www.rapid7.com/db/modules/exploit/multi/http/wp_crop_rce

www.securityfocus.com/bid/107088

blog.ripstech.com/2019/wordpress-image-remote-code-execution/

lists.debian.org/debian-lts-announce/2019/03/msg00044.html

wpvulndb.com/vulnerabilities/9222

www.debian.org/security/2019/dsa-4401

www.exploit-db.com/exploits/46511/

www.exploit-db.com/exploits/46662/

EPSS

0.943

Percentile

99.3%

Related for VERACODE:13367

patchstack1 checkpoint_advisories1 packetstorm1 attackerkb1 ubuntucve1 osv3 openvas4 wpvulndb1 exploitdb2 debiancve1 cve1 nessus2 prion1 nvd1 githubexploit2 metasploit1 cvelist1 zdt2 debian3