Lucene search

[email protected]CVE-2021-39352

HistoryOct 21, 2021 - 8:15 p.m.

CVE-2021-39352

2021-10-2120:15:08

CWE-434

[email protected]

web.nvd.nist.gov

catch themes

demo import

wordpress plugin

arbitrary file upload

remote code execution

cve-2021-39352

nvd

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

High

0.936 High

EPSS

Percentile

99.1%

JSON

The Catch Themes Demo Import WordPress plugin is vulnerable to arbitrary file uploads via the import functionality found in the ~/inc/CatchThemesDemoImport.php file, in versions up to and including 1.7, due to insufficient file type validation. This makes it possible for an attacker with administrative privileges to upload malicious files that can be used to achieve remote code execution.

Affected configurations

Vulners

NVD

Node

catch_themes_demo_importcatch_themes_demo_importRange1.7–1.7

CPENameOperatorVersion
catchplugins:catch_themes_demo_importcatchplugins catch themes demo importle1.7

CPE	Name	Operator	Version
catchplugins:catch_themes_demo_import	catchplugins catch themes demo import	le	1.7

CNA Affected

[
  {
    "product": "Catch Themes Demo Import",
    "vendor": "Catch Themes Demo Import",
    "versions": [
      {
        "lessThanOrEqual": "1.7",
        "status": "affected",
        "version": "1.7",
        "versionType": "custom"
      }
    ]
  }
]