cbcvebase.
CVE-2024-2340
published 2024-04-09

CVE-2024-2340: The Avada theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.11.6 via the…

PriorityP350medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EXPLOIT
EPSS
28.00%
97.9th percentile
The Avada theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.11.6 via the '/wp-content/uploads/fusion-forms/' directory. This makes it possible for unauthenticated attackers to extract sensitive data uploaded via an Avada created form with a file upload mechanism.

Affected

2 ranges
VendorProductVersion rangeFixed in
theme-fusionavada< 7.11.77.11.7
themefusionavada_website_builder_for_wordpress_woocommerce<= 7.11.6

Detection & IOCsextracted from sources · hover to see the quote

path/wp-content/uploads/fusion-forms/
  • Detect unauthenticated HTTP GET requests to the exposed Avada fusion-forms upload directory returning HTTP 200, which may indicate directory listing or file enumeration by an attacker.
  • Use the following nuclei-style detection logic: match page title containing 'Avada' and 'Index of' (directory listing indicator) alongside the keyword 'fusion', with an HTTP 200 status response on the fusion-forms path.
  • ·Vulnerability only exists if the WordPress installation has directory listing enabled on the '/wp-content/uploads/fusion-forms/' path AND the Avada theme's file upload form feature has been used to collect files.

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
vendor_redhat4.7MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.