CVE-2022-4395

Membership For WooCommerce < 2.1.7 - Unauthenticated Arbitrary File Upload

CVSS 9.8 CRITICALEPSS 17.6%

The Membership For WooCommerce WordPress plugin before 2.1.7 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as malicious PHP code, and achieve RCE.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Unknown · Membership For WooCommerce

public PoCs found — 4

githubgithub.com/MrG3P5/CVE-2022-4395★ 7 cve_referencepacketstormsecurity.com/files/177934/WordPress-Membership-For-WooCommerce-Shell-Upload.htmlunverified cve_referencewww.exploit-db.com/exploits/51959unverified cve_referencewpscan.com/vulnerability/80407ac4-8ce3-4df7-9c41-007b69045c40unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://packetstormsecurity.com/files/177934/WordPress-Membership-For-WooCommerce-Shell-Upload.html https://wpscan.com/vulnerability/80407ac4-8ce3-4df7-9c41-007b69045c40 https://www.exploit-db.com/exploits/51959