9.8

CVE-2024-3229

EPSS 8.75%
Veröffentlicht 19.06.2024 05:15:52
Zuletzt bearbeitet 11.04.2025 15:16:19
Quelle security@wordfence.com
CVE-Watchlists
Login
Unerledigt
Login

Salon Booking System <= 10.2 - Unauthenticated Arbitrary File Upload

The Salon booking system plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the SLN_Action_Ajax_ImportAssistants function along with missing authorization checks in all versions up to, and including, 10.2. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

Mögliche Gegenmaßnahme

Salon Booking System – Free Version: Update to version 10.3, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Salon Booking System – Free Version

Version *-10.2

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Salonbookingsystem ≫ Salon Booking System SwPlatformwordpress Version < 10.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	8.75%	0.922

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@wordfence.com	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://plugins.trac.wordpress.org/changeset/3103584/salon-booking-system/trunk/src/SLN/Action/Ajax/ImportAssistants.php

Patch

https://www.wordfence.com/threat-intel/vulnerabilities/id/3bbbf5be-5c0a-4514-88ac-003083c0bba3?source=cve

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/3bbbf5be-5c0a-4514-88ac-003083c0bba3

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-3229

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-3229

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-3229

EUVD