CVE-2024-2023

The Folders and Folders Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.0 in Folders and 3.0.2 in Folders Pro via the 'handle_folders_file_upload' function. This makes it possible for authenticated attackers, with author access and above, to upload files to arbitrary locations on the server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
WordfenceCNA
4.3 MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
CISA-ADPADP
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
VendorProductVersion
premiofolders
𝑥
≤ 3.0
premiofolders_pro
𝑥
≤ 3.0.2
𝑥
= Vulnerable software versions
References
https://plugins.trac.wordpress.org/browser/folders/tags/3.0/includes/media.replace.php#L1311
https://plugins.trac.wordpress.org/changeset/3070429/folders/trunk/includes/media.replace.php
https://www.wordfence.com/threat-intel/vulnerabilities/id/b4cc839c-de7a-43eb-a7fa-b1049419bfa3?source=cve
https://plugins.trac.wordpress.org/browser/folders/tags/3.0/includes/media.replace.php#L1311
https://plugins.trac.wordpress.org/changeset/3070429/folders/trunk/includes/media.replace.php
https://www.wordfence.com/threat-intel/vulnerabilities/id/b4cc839c-de7a-43eb-a7fa-b1049419bfa3?source=cve