CVE-2024-3020

EPSS 1.18%
Veröffentlicht 10.04.2024 05:15:50
Zuletzt bearbeitet 21.11.2024 09:28:41
Quelle security@wordfence.com
CVE-Watchlists
Login
Unerledigt
Login

Carousel, Slider, Gallery by WP Carousel – Image Carousel & Photo Gallery, Post Carousel & Post Grid, Product Carousel & Product Grid for WooCommerce <= 2.6.3 - Authenticated (Admin+) PHP Object Injection

The plugin is vulnerable to PHP Object Injection in versions up to and including, 2.6.3 via deserialization of untrusted input in the import function via the 'shortcode' parameter. This allows authenticated attackers, with administrator-level access to inject a PHP Object. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.

Mögliche Gegenmaßnahme

Carousel, Slider, Photo Gallery with Lightbox, Video Slider, by WP Carousel: Update to version 2.6.4, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Carousel, Slider, Photo Gallery with Lightbox, Video Slider, by WP Carousel

Version *-2.6.3

Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)

Herstellershapedplugin

≫

Produkt product_slider_for_woocommerce

Default Statusunknown

Version < 2.6.3

Version 0

Status affected

Herstellershapedplugin

≫

Produkt post_grid\,_post_carousel\,_\&_list_category_posts

Default Statusunknown

Version < 2.6.3

Version 0

Status affected

Herstellershapedplugin

≫

Produkt logo_carousel

Default Statusunknown

Version < 2.6.3

Version 0

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.18%	0.781

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@wordfence.com	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://plugins.trac.wordpress.org/changeset/3065296/wp-carousel-free/trunk/includes/class-wp-carousel-free-import-export.php

https://www.wordfence.com/threat-intel/vulnerabilities/id/d66df15e-1a0a-49e9-bcf9-67091499b24e?source=cve

https://www.wordfence.com/threat-intel/vulnerabilities/id/d66df15e-1a0a-49e9-bcf9-67091499b24e

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-3020

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-3020

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-3020

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-3020