漏洞标题
N/A
漏洞描述信息
WordPress上的Contact Form 7插件由于“验证”函数中的文件类型验证不足以及直到5.8.3版本为止的“wpcf7_antiscript_file_name”函数中的不够有效的隔离列表,可能导致任意文件上传。这使具有编辑级别能力或以上的 authenticated attackers 可以在受影响网站服务器上上传任意文件,但由于缺乏htaccess配置,在大多数情况下,远程代码无法执行。默认情况下,文件将从服务器立即删除。然而,在某些情况下,其他插件可能会使文件在服务器上存活更长。这可能会与其他漏洞(如本地文件包含)结合时使远程代码执行成为可能。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
危险类型文件的不加限制上传
漏洞标题
N/A
漏洞描述信息
The Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'validate' function and insufficient blocklisting on the 'wpcf7_antiscript_file_name' function in versions up to, and including, 5.8.3. This makes it possible for authenticated attackers with editor-level capabilities or above to upload arbitrary files on the affected site's server, but due to the htaccess configuration, remote code cannot be executed in most cases. By default, the file will be deleted from the server immediately. However, in some cases, other plugins may make it possible for the file to live on the server longer. This can make remote code execution possible when combined with another vulnerability, such as local file inclusion.
CVSS信息
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
WordPress plugin Contact Form 安全漏洞
漏洞描述信息
WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin Contact Form 5.8.3版本及之前版本存在安全漏洞,该漏洞源于对validate函数中的文件类型验证不足。
CVSS信息
N/A
漏洞类别
其他