CVE-2024-9507

  1. Yack CVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-9507

4.9 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

T

he Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to arbitrary file read in all versions up to, and including, 2.15.2 due to improper input validation within the iconUpload function. This makes it possible for authenticated attackers, with Administrator-level access and above, to leverage a PHP filter chain attack and read the contents of arbitrary files on the server, which can contain sensitive information.

References
Link Resource
https://plugins.trac.wordpress.org/browser/bit-form/trunk/includes/Admin/AdminAjax.php#L1210
https://plugins.trac.wordpress.org/changeset/3165686/
https://plugins.trac.wordpress.org/changeset/3165686/bit-form/trunk/includes/Admin/AdminAjax.php
https://wordpress.org/plugins/bit-form/#developers
https://www.wordfence.com/threat-intel/vulnerabilities/id/aa46842f-ed07-4f72-aedb-aa27baecd79c?source=cve
Configurations

No configuration.

History

15 Oct 2024, 12:58

Type Values Removed Values Added
Summary
  • (es) El complemento Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder para WordPress es vulnerable a la lectura arbitraria de archivos en todas las versiones hasta la 2.15.2 incluida, debido a una validación de entrada incorrecta dentro de la función iconUpload. Esto hace posible que atacantes autenticados, con acceso de nivel de administrador o superior, aprovechen un ataque de cadena de filtros PHP y lean el contenido de archivos arbitrarios en el servidor, que pueden contener información confidencial.

11 Oct 2024, 13:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-10-11 13:15

Updated : 2024-10-15 12:58

NVD link : CVE-2024-9507

Mitre link : CVE-2024-9507

CVE.ORG link : CVE-2024-9507

JSON object : View

Products Affected

No product.

CWE
CWE-20

Improper Input Validation