CVE-2024-7419

{"id": "CVE-2024-7419", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@wordfence.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.3, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.6}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2025-02-07T16:15:39.100", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/40b57370-4fd7-4316-9e99-a3f1d34616e8?source=cve", "tags": ["Third Party Advisory"], "source": "security@wordfence.com"}, {"url": "https://www.wpallimport.com/upgrade-to-wp-all-export-pro/", "tags": ["Product"], "source": "security@wordfence.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security@wordfence.com", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "The WP ALL Export Pro plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.9.1 via the custom export fields. This is due to the missing input validation and sanitization of user-supplied data. This makes it possible for unauthenticated attackers to inject arbitrary PHP code into form fields that get executed on the server during the export, potentially leading to a complete site compromise. \r\nAs a prerequisite, the custom export field should include fields containing user-supplied data."}, {"lang": "es", "value": "El complemento WP ALL Export Pro para WordPress es vulnerable a la ejecuci\u00f3n remota de c\u00f3digo en todas las versiones hasta la 1.9.1 incluida a trav\u00e9s de los campos de exportaci\u00f3n personalizados. Esto se debe a la falta de validaci\u00f3n de entrada y de depuraci\u00f3n de los datos proporcionados por el usuario. Esto hace posible que atacantes no autenticados inyecten c\u00f3digo PHP arbitrario en los campos de formulario que se ejecutan en el servidor durante la exportaci\u00f3n, lo que puede provocar un compromiso total del sitio. Como requisito previo, el campo de exportaci\u00f3n personalizado debe incluir campos que contengan datos proporcionados por el usuario."}], "lastModified": "2025-02-11T19:25:14.023", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:soflyy:wp_all_export:*:*:*:*:pro:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "93DAC402-B7C2-4782-B1C2-3A1460C1AEA9", "versionEndExcluding": "1.9.2"}], "operator": "OR"}]}], "sourceIdentifier": "security@wordfence.com"}