Authenticated File Upload in WordPress Download Manager <= 3.1.24 allows authenticated (Author+) users to upload files with a double extension, e.g. "payload.php.png" which is executable in some configurations. This issue affects: WordPress Download Manager version 3.1.24 and prior versions.
References
Link | Resource |
---|---|
https://www.wordfence.com/blog/2021/07/wordpress-download-manager-vulnerabilities/ | Third Party Advisory |
https://www.wordfence.com/blog/2021/07/wordpress-download-manager-vulnerabilities/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:10
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.wordfence.com/blog/2021/07/wordpress-download-manager-vulnerabilities/ - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 6.5
v3 : 7.5 |
12 Aug 2021, 17:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-434 | |
CPE | cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:*:*:*:*:*:wordpress:*:* | |
CVSS |
v2 : v3 : |
v2 : 6.5
v3 : 8.8 |
References | (MISC) https://www.wordfence.com/blog/2021/07/wordpress-download-manager-vulnerabilities/ - Third Party Advisory |
05 Aug 2021, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-08-05 21:15
Updated : 2024-11-21 06:10
NVD link : CVE-2021-34639
Mitre link : CVE-2021-34639
CVE.ORG link : CVE-2021-34639
JSON object : View
Products Affected
wpdownloadmanager
- wordpress_download_manager