Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2019-8943 — Path Traversal in Wordpress

CWE-22 — Path Traversal CWE-434 — Unrestricted File Upload CWE-73 — External Control of File Name or Path26 documents11 sources

Severity

8.8HIGHNVD

NVD6.5OSV6.5

EPSS

93.9%

top 0.12%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Wordpress Baserproject Basercms Debian Wordpress +1 more

Timeline

PublishedFeb 20

Latest updateMar 31

Description

WordPress through 5.0.3 allows Path Traversal in wp_crop_image(). An attacker (who has privileges to crop an image) can write the output image to an arbitrary directory via a filename containing two image extensions and ../ sequences, such as a filename ending with the .jpg?/../../file.jpg substring.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/wordpress< wordpress 5.0.1+dfsg1-1 (bookworm)+1

▶NVDwordpress/wordpress< 4.9.9+2

▶Debianwordpress/wordpress< 5.0.1+dfsg1-1+3

▶Packagistbaserproject/basercms< 5.2.3

Also affects: Debian Linux 9.0

🔴Vulnerability Details

GHSA

baserCMS Path Traversal Leads to Arbitrary File Write and RCE via Theme File API↗2026-03-31

▶

OSV

baserCMS Path Traversal Leads to Arbitrary File Write and RCE via Theme File API↗2026-03-31

▶

GHSA

GHSA-rwhm-6hw4-9fgg: WordPress before 4↗2022-05-13

▶

GHSA

GHSA-558v-vpgj-m324: WordPress through 5↗2022-05-13

▶

OSV

CVE-2019-8942: WordPress before 4↗2019-02-20

▶

💥Exploits & PoCs

Exploit-DB

WordPress Core 5.0.0 - Crop-image Shell Upload (Metasploit)↗2019-04-05

▶

Exploit-DB

WordPress Core 5.0 - Remote Code Execution↗2019-03-01

▶

Metasploit

WordPress Crop-image Shell Upload↗

▶

Nuclei

WordPress Core 5.0.0 - Crop-image Shell Upload

▶

📋Vendor Advisories

Debian

CVE-2019-8942: wordpress - WordPress before 4.9.9 and 5.x before 5.0.1 allows remote code execution because...↗2019

▶

Debian

CVE-2019-8943: wordpress - WordPress through 5.0.3 allows Path Traversal in wp_crop_image(). An attacker (w...↗2019

▶

🕵️Threat Intelligence

Trendmicro

Remote Code Execution-Sicherheitslücken in WordPress↗2019-03-01

▶

Trendmicro

Wordpress: Analyzing CVE-2019-8942 and CVE-2019-8943↗2019-02-26

▶

Trendmicro

Wordpress: Analyzing CVE-2019-8942 and CVE-2019-8943↗2019-02-26

▶

Trendmicro

Wordpress: Analyzing CVE-2019-8942 and CVE-2019-8943↗2019-02-26

▶

Trendmicro

Wordpress: Analyzing CVE-2019-8942 and CVE-2019-8943↗2019-02-26

▶

💬Community

Bugzilla

CVE-2019-8943 wordpress: path traversal in wp_crop_image()↗2019-02-20

▶

Bugzilla

CVE-2019-8942 wordpress: Author users can execute arbitrary code by leveraging path traversal↗2019-02-20

▶

Bugzilla

CVE-2019-8942 CVE-2019-8943 wordpress: various flaws [fedora-all]↗2019-02-20

▶

Bugzilla

CVE-2019-8942 CVE-2019-8943 wordpress: various flaws [epel-all]↗2019-02-20

▶