CVE-2024-11613

CRITICAL EPSS 90.0%

Published Jan 8, 20251y ago · Modified Jun 17, 20261w ago

9.8 CVSS 3.1

Critical

Published Jan 8, 2025 1y ago

Last Modified Jun 17, 2026 1w ago

Description

The WordPress File Upload plugin for WordPress is vulnerable to Remote Code Execution, Arbitrary File Read, and Arbitrary File Deletion in all versions up to, and including, 4.24.15 via the 'wfu_file_downloader.php' file. This is due to lack of proper sanitization of the 'source' parameter and allowing a user-defined directory path. This makes it possible for unauthenticated attackers to execute code on the server.

CVSS Details

Base Score

9.8

Exploitability

3.9

Impact

5.9

Vector string

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality High

Integrity High

Availability High

Threat Intelligence

EPSS Exploit Probability

90.0% percentile

Exploit & Patch Status

No Known Exploit

Patch Available

Weaknesses 1

CWE-94 Improper Control of Generation of Code (Code Injection) Injection

Affected Products 1

Vendor	Product	Version	Range
iptanus	wordpress_file_upload	*	<4.25.0

References 4

abrahack.com https://abrahack.com/posts/wp-file-upload-rce-part2/
plugins.svn.wordpress.org https://plugins.svn.wordpress.org/wp-file-upload/trunk/wfu_file_downloader.php

Product
plugins.trac.wordpress.org https://plugins.trac.wordpress.org/changeset/3217005/

Patch
wordfence.com https://www.wordfence.com/threat-intel/vulnerabilities/id/31052fe6-a0ae-4502-b2d2-dbc3b3bf672f?source=cve

Third Party Advisory

Remediation

plugins.trac.wordpress.org https://plugins.trac.wordpress.org/changeset/3217005/

Patch