CVE-2024-8725
published 2024-09-26CVE-2024-8725: Multiple plugins and/or themes for WordPress are vulnerable to Limited File Upload in various versions. This is due to a lack of proper checks to ensure…
PriorityP428medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
0.35%
27.1th percentile
Multiple plugins and/or themes for WordPress are vulnerable to Limited File Upload in various versions. This is due to a lack of proper checks to ensure lower-privileged roles cannot upload .css and .js files to arbitrary directories. This makes it possible for authenticated attackers, with Subscriber-level access and above, and granted permissions by an administrator, to upload .css and .js files to any directory within the WordPress root directory, which could lead to Stored Cross-Site Scripting. The Advanced File Manager Shortcodes plugin must be installed to exploit this vulnerability.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| advancedfilemanager | advanced_file_manager | < 5.2.9 | 5.2.9 |
| jose-node-cjs-runtime_project | jose-node-cjs-runtime | >= 0 < 4.15.5 | 4.15.5 |
| jose_project | jose | >= 0 < 2.0.7 | 2.0.7 |
| jose_project | jose | >= 3.0.0 < 4.15.5 | 4.15.5 |
| saadiqbal | advanced_file_manager_ultimate_file_manager_for_wordpress_and_document_library_s | <= 5.2.8 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gqqx-m28r-fmjj: Multiple plugins and/or themes for WordPress are vulnerable to Limited File Upload in various versions
ghsa_unreviewed·2024-09-26
CVE-2024-8725 [MEDIUM] CWE-434 GHSA-gqqx-m28r-fmjj: Multiple plugins and/or themes for WordPress are vulnerable to Limited File Upload in various versions
Multiple plugins and/or themes for WordPress are vulnerable to Limited File Upload in various versions. This is due to a lack of proper checks to ensure lower-privileged roles cannot upload .css and .js files to arbitrary directories. This makes it possible for authenticated attackers, with Subscriber-level access and above, and granted permissions by an administrator, to upload .css and .js files to any directory within the WordPress root directory, which could lead to Stored Cross-Site Scripting. The Advanced File Manager Shortcodes plugin must be installed to exploit this vulnerability.
GHSA
jose vulnerable to resource exhaustion via specifically crafted JWE with compressed plaintext
ghsa·2024-03-07
CVE-2024-28176 [MEDIUM] CWE-400 jose vulnerable to resource exhaustion via specifically crafted JWE with compressed plaintext
jose vulnerable to resource exhaustion via specifically crafted JWE with compressed plaintext
A vulnerability has been identified in the JSON Web Encryption (JWE) decryption interfaces, specifically related to the [support for decompressing plaintext after its decryption](https://www.rfc-editor.org/rfc/rfc7516.html#section-4.1.3). This allows an adversary to exploit specific scenarios where the compression ratio becomes exceptionally high. As a result, the length of the JWE token, which is determined by the compressed content's size, can land below application-defined limits. In such cases, other existing application level mechanisms for preventing resource exhaustion may be rendered ineffective.
Note that as per [RFC 8725](https://www.rfc-editor.org/rfc/rfc8725.html#name-avoid-compressi
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://plugins.trac.wordpress.org/browser/file-manager-advanced/trunk/application/class_fma_main.php#L24https://plugins.trac.wordpress.org/browser/file-manager-advanced/trunk/application/class_fma_shortcode.php#L28https://plugins.trac.wordpress.org/changeset/3157713/https://www.wordfence.com/threat-intel/vulnerabilities/id/ce2b4f93-93a6-480f-a877-ca47bd133bb6?source=cve
2024-09-26
Published