CVE-2013-7102
published 2013-12-23CVE-2013-7102: Multiple unrestricted file upload vulnerabilities in (1) media-upload.php, (2) media-upload-lncthumb.php, and (3) media-upload-sq_button.php in lib/admin/ in…
PriorityP277medium6.8CVSS 2.0
AVNACMAuNCPIPAP
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
14.80%
96.3th percentile
Multiple unrestricted file upload vulnerabilities in (1) media-upload.php, (2) media-upload-lncthumb.php, and (3) media-upload-sq_button.php in lib/admin/ in the OptimizePress theme before 1.61 for WordPress allow remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images_comingsoon, images_lncthumbs, or images_optbuttons in wp-content/uploads/optpress/, as exploited in the wild in November 2013.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| optimizepress | optimizepress | <= 1.60 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor for HTTP POST requests targeting lib/admin/media-upload.php, media-upload-lncthumb.php, or media-upload-sq_button.php with multipart file uploads containing executable extensions (e.g., .php, .php5, .phtml). ↗
- →Alert on HTTP GET/POST requests to wp-content/uploads/optpress/images_comingsoon/, images_lncthumbs/, or images_optbuttons/ for files with executable extensions, indicating post-upload webshell access. ↗
- →This vulnerability was actively exploited in the wild in November 2013; prioritize detection on WordPress installations running OptimizePress versions prior to 1.61. ↗
- →The Metasploit module targets OptimizePress 1.45 specifically; treat this version as a high-risk indicator during asset inventory. ↗
- ·The upload endpoints (media-upload.php, media-upload-lncthumb.php, media-upload-sq_button.php) allow unrestricted file extensions with no authentication check enforced by the theme, meaning any remote attacker can upload and execute arbitrary code without credentials. ↗
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vulncheck6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vqcv-hf93-cvhh: Multiple unrestricted file upload vulnerabilities in (1) media-upload
ghsa_unreviewed·2022-05-17
CVE-2013-7102 [MEDIUM] CWE-20 GHSA-vqcv-hf93-cvhh: Multiple unrestricted file upload vulnerabilities in (1) media-upload
Multiple unrestricted file upload vulnerabilities in (1) media-upload.php, (2) media-upload-lncthumb.php, and (3) media-upload-sq_button.php in lib/admin/ in the OptimizePress theme before 1.61 for WordPress allow remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images_comingsoon, images_lncthumbs, or images_optbuttons in wp-content/uploads/optpress/, as exploited in the wild in November 2013.
VulnCheck
optimizepress optimizepress Improper Input Validation
vulncheck·2013·CVSS 6.8
CVE-2013-7102 [MEDIUM] optimizepress optimizepress Improper Input Validation
optimizepress optimizepress Improper Input Validation
Multiple unrestricted file upload vulnerabilities in (1) media-upload.php, (2) media-upload-lncthumb.php, and (3) media-upload-sq_button.php in lib/admin/ in the OptimizePress theme before 1.61 for WordPress allow remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images_comingsoon, images_lncthumbs, or images_optbuttons in wp-content/uploads/optpress/, as exploited in the wild in November 2013.
Affected: optimizepress optimizepress
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://nvd.nist.gov/vuln/de
No detection rules found.
No writeups or analysis indexed.
http://blog.sucuri.net/2013/12/wordpress-optimizepress-theme-file-upload-vulnerability.htmlhttp://help.optimizepress.com/customer/portal/articles/1381790-important-optimizepress-1-0-security-updatehttp://seclists.org/fulldisclosure/2013/Dec/127http://www.osirt.com/2013/11/wordpress-optimizepress-hack-file-upload-vulnerability/http://blog.sucuri.net/2013/12/wordpress-optimizepress-theme-file-upload-vulnerability.htmlhttp://help.optimizepress.com/customer/portal/articles/1381790-important-optimizepress-1-0-security-updatehttp://seclists.org/fulldisclosure/2013/Dec/127http://www.osirt.com/2013/11/wordpress-optimizepress-hack-file-upload-vulnerability/
2013-12-23
Published
Exploited in the wild