CVE-2023-6846 — Code Injection in Manager PRO

CWE-94 — Code Injection CWE-434 — Unrestricted File Upload3 documents3 sources

Severity

8.8HIGHNVD

EPSS

13.3%

top 5.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

File Manager PRO Filemanagerpro File Manager

Timeline

PublishedFeb 5

Latest updateFeb 6

Description

The File Manager Pro plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 8.3.4 via the mk_check_filemanager_php_syntax AJAX function. This makes it possible for authenticated attackers, with subscriber access and above, to execute code on the server. Version 8.3.5 introduces a capability check that prevents users lower than admin from executing this function.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDfilemanagerpro/file_manager8.3.4

▶CVEListV5file_manager/file_manager_pro8.3.4

🔴Vulnerability Details

GHSA

GHSA-m285-497c-62j9: The File Manager Pro plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 8↗2024-02-06

▶

CVEList

File Manager Pro <= 8.3.4 - Authenticated (Subscriber+) Arbitrary File Upload↗2024-02-05

▶