漏洞标题
W2S – Migrate WooCommerce to Shopify <= 1.2.1 - 验证不足导致认证用户任意文件读取漏洞
漏洞描述信息
WordPress插件W2S – Migrate WooCommerce to Shopify在所有版本(包括1.2.1版本)中存在任意文件读取漏洞,通过'viw2s_view_log' AJAX操作触发。这使得具有订阅者级别及以上权限的认证攻击者能够读取服务器上的任意文件内容,这些文件可能包含敏感信息。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
漏洞类别
信息暴露
漏洞标题
W2S – Migrate WooCommerce to Shopify <= 1.2.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Read
漏洞描述信息
The W2S – Migrate WooCommerce to Shopify plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.2.1 via the 'viw2s_view_log' AJAX action. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
漏洞类别
文件名或路径的外部可控制