CVE-2020-24186

🗓️ 24 Aug 2020 13:02:04Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 7 Media mentions👁 180 Views🌐 WEB

Remote Code Exec in gVectors wpDiscuz 7.0-7.0.4 for WordPress allows unauthenticated file upload

Reporter	Title	Published	Views	Family All 32
0day.today	Wordpress wpDiscuz 7.0.4 Plugin - Arbitrary File Upload (Unauthenticated) Exploit	7 Jun 202100:00	–	zdt
0day.today	WordPress wpDiscuz 7.0.4 Plugin - Remote Code Execution (Unauthenticated) Exploit	8 Jun 202100:00	–	zdt
0day.today	WordPress wpDiscuz 7.0.4 Shell Upload Exploit	28 Jun 202100:00	–	zdt
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Gvectors Wpdiscuz	5 Apr 202208:31	–	githubexploit
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Gvectors Wpdiscuz	13 Jun 202123:10	–	githubexploit
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Gvectors Wpdiscuz	13 Jun 202123:10	–	githubexploit
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Gvectors Wpdiscuz	1 Feb 202616:32	–	githubexploit
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Gvectors Wpdiscuz	21 Dec 202323:23	–	githubexploit
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Gvectors Wpdiscuz	13 Jun 202123:10	–	githubexploit
ATTACKERKB	CVE-2020-24186	24 Aug 202000:00	–	attackerkb

NVD

Node

gvectors wpdiscuzRange7.0–7.0.4wordpress

Source	Link
wordfence	www.wordfence.com/blog/2020/07/critical-arbitrary-file-upload-vulnerability-patched-in-wpdiscuz-plugin/
packetstormsecurity	www.packetstormsecurity.com/files/163302/WordPress-wpDiscuz-7.0.4-Shell-Upload.html
packetstormsecurity	www.packetstormsecurity.com/files/162983/WordPress-wpDiscuz-7.0.4-Shell-Upload.html
packetstormsecurity	www.packetstormsecurity.com/files/163012/WordPress-wpDiscuz-7.0.4-Remote-Code-Execution.html

Parameter	Position	Path	Description	CWE
action	request body	/wp-admin/admin-ajax.php	Unauthenticated file upload via wmuUploadFiles leads to remote code execution by uploading PHP files.	CWE-434
wmu_nonce	request body	/wp-admin/admin-ajax.php	Unauthenticated file upload via wmuUploadFiles leads to remote code execution by uploading PHP files.	CWE-434
wmuAttachmentsData	request body	/wp-admin/admin-ajax.php	Unauthenticated file upload via wmuUploadFiles leads to remote code execution by uploading PHP files.	CWE-434
wmu_files[0]	request body	/wp-admin/admin-ajax.php	Unauthenticated file upload via wmuUploadFiles leads to remote code execution by uploading PHP files.	CWE-434
postId	request body	/wp-admin/admin-ajax.php	Unauthenticated file upload via wmuUploadFiles leads to remote code execution by uploading PHP files.	CWE-434

21 Nov 2024 05:14Current

9.6High risk

Vulners AI Score9.6

CVSS 27.5

CVSS 3.110

EPSS0.94221