CVE-2024-6366

2024-07-2906:15:02

WPScan

web.nvd.nist.gov

wordpress

user profile builder

improper authorization

unauthenticated users

media files

async upload functionality

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

21.8%

JSON

The User Profile Builder WordPress plugin before 3.11.8 does not have proper authorisation, allowing unauthenticated users to upload media files via the async upload functionality of WP.

Affected configurations

Vulners

Vulnrichment

Node

reflectionmediaprofile_builder_–_user_profile_\&_user_registration_formsRange<3.11.8wordpress

VendorProductVersionCPE
reflectionmediaprofile_builder_–_user_profile_\&_user_registration_forms*cpe:2.3:a:reflectionmedia:profile_builder_–_user_profile_\&_user_registration_forms:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
reflectionmedia	profile_builder_–_user_profile_\&_user_registration_forms	*	cpe:2.3:a:reflectionmedia:profile_builder_–_user_profile_\&_user_registration_forms::::::wordpress::*

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "User Profile Builder",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "3.11.8"
      }
    ],
    "defaultStatus": "unaffected"
  }
]