CVE-2021-24962

🗓️ 28 Mar 2022 17:21:01Reported by WPScanType

cve🔗 web.nvd.nist.gov👁 90 Views🌐 WEB

The WordPress File Upload Free and Pro WordPress plugins before 4.16.3 allow users with a role as low as Contributor to perform path traversal via a shortcode argumen

Reporter	Title	Published	Views	Family All 12
CNNVD	WordPress plugin WordPress File Upload Free and Pro 路径遍历漏洞	28 Mar 202200:00	–	cnnvd
CNVD	WordPress File Upload Free and Pro plugin path traversal vulnerability	30 Mar 202200:00	–	cnvd
Cvelist	CVE-2021-24962 WordPress File Upload < 4.16.3 - Contributor+ Path Traversal to RCE	28 Mar 202217:21	–	cvelist
EUVD	EUVD-2021-11874	7 Oct 202500:30	–	euvd
NVD	CVE-2021-24962	28 Mar 202218:15	–	nvd
OSV	CVE-2021-24962	28 Mar 202218:15	–	osv
Patchstack	WordPress File Upload Pro premium plugin <= 4.16.2 - Contributor+ Path Traversal vulnerability leading to Remote Code Execution (RCE)	1 Mar 202200:00	–	patchstack
Patchstack	WordPress File Upload plugin <= 4.16.2 - Contributor+ Path Traversal vulnerability leading to Remote Code Execution (RCE)	1 Mar 202200:00	–	patchstack
Prion	Path traversal	28 Mar 202218:15	–	prion
RedhatCVE	CVE-2021-24962	22 May 202519:24	–	redhatcve

NVD

Vulners

Node

iptanus wordpress_file_uploadRange<4.16.3wordpress

iptanus wordpress_file_upload_proRange<4.16.3wordpress

[
  {
    "product": "WordPress File Upload",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "4.16.3",
        "status": "affected",
        "version": "4.16.3",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "WordPress File Upload Pro",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "4.16.3",
        "status": "affected",
        "version": "4.16.3",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/changeset/2677722
wpscan	www.wpscan.com/vulnerability/7a95b3f2-285e-40e3-aead-41932c207623

Parameter	Position	Path	Description	CWE
action	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
wfu_uploader_nonce	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
uploadedfile_1_index	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
uploadedfile_1_name	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
uploadedfile_1_size	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
uniqueuploadid_1	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
params_index	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
subdir_sel_index	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
nofileupload_1	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22
only_check	request body	/wp-admin/admin-ajax.php	Path traversal vulnerability enabling PHP code upload disguised as an image via a shortcode argument, leading to arbitrary code execution	CWE-22

17 Jun 2026 03:41Current

9High risk

Vulners AI Score9

CVSS 26.5

CVSS 3.18.8

EPSS0.02849

CWE-22