← back
CVE-2024-6366

User Profile Builder < 3.11.8 - Unauthenticated Media Upload

CVSS 9.1 CRITICALEPSS 29.0%
Vexday Risk Score
53Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS 9.1EPSS 29.0%KEV nãoPoC públicaPatch
Lifecycle
29 Jul 2024Published on NVD
03 Aug 2024Public PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
The User Profile Builder WordPress plugin before 3.11.8 does not have proper authorisation, allowing unauthenticated users to upload media files via the async upload functionality of WP.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected products
Unknown · User Profile Builder
public PoCs found3
githubgithub.com/Abdurahmon3236/CVE-2024-63660githubgithub.com/Nxploited/CVE-2024-6366-PoC0cve_referencewpscan.com/vulnerability/5b90cbdd-52cc-4e7b-bf39-bea0dd59e19e/unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://wpscan.com/vulnerability/5b90cbdd-52cc-4e7b-bf39-bea0dd59e19e/