CVE-2023-4666
published 2023-10-16CVE-2023-4666: The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated…
PriorityP184critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
3.28%
86.9th percentile
The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| 10web | form_maker | < 1.15.20 | 1.15.20 |
Detection & IOCsextracted from sources · hover to see the quote
otherfofa-query: body="/wp-content/plugins/form-maker/"
- →Probe for vulnerable Form Maker plugin by fetching the readme.txt file; a 200 response containing 'Form Maker by 10Web' with a version string below 1.15.20 indicates a vulnerable installation. ↗
- →Extract the plugin version from the readme.txt body using the regex pattern 'Stable tag: ([0-9.]+)' and compare against the fixed version 1.15.20. ↗
- →The vulnerability is exploitable by unauthenticated users via missing signature validation when creating signatures server-side from user input, enabling arbitrary file upload and RCE. ↗
- ·The Nuclei template is classified as a passive/version-detection check only; it does not actively exploit the file upload vulnerability but confirms exposure by version comparison. ↗
- ·Only Form Maker by 10Web versions strictly below 1.15.20 are vulnerable; version 1.15.20 and above are patched. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-w72r-ch4p-xqg3: The Form Maker by 10Web WordPress plugin before 1
ghsa_unreviewed·2023-10-16
CVE-2023-4666 [CRITICAL] CWE-434 GHSA-w72r-ch4p-xqg3: The Form Maker by 10Web WordPress plugin before 1
The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE
VulnCheck
Form Maker by 10Web WordPress plugin Remote Code Execution Vulnerability
vulncheck·2023·CVSS 9.8
CVE-2023-4666 [CRITICAL] Form Maker by 10Web WordPress plugin Remote Code Execution Vulnerability
Form Maker by 10Web WordPress plugin Remote Code Execution Vulnerability
The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE
Affected: 10web form_maker
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/form-maker/form-maker-by-10web-11519-unauthenticated-arbitrary-file-upload
No detection rules found.
Nuclei
Form-Maker < 1.15.20 - Unauthenticated Arbitrary File Upload
nuclei·CVSS 9.8
CVE-2023-4666 [CRITICAL] Form-Maker < 1.15.20 - Unauthenticated Arbitrary File Upload
Form-Maker < 1.15.20 - Unauthenticated Arbitrary File Upload
The plugin does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE.
Template:
id: CVE-2023-4666
info:
name: Form-Maker < 1.15.20 - Unauthenticated Arbitrary File Upload
author: pussycat0x
severity: critical
description: |
The plugin does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE.
impact: |
Unauthenticated attackers can exploit missing signature validation to upload arbitrary files and achieve remote code execution on WordPress installations running vulnerable Form-Maker plugins.
remediation: Fixed in 1.15.20
reference:
- https:/
No writeups or analysis indexed.
2023-10-16
Published
Exploited in the wild