CVE-2018-8710

high-risk
Published 2018-03-14

A remote code execution issue was discovered in the WooCommerce Products Filter (aka WOOF) plugin before 2.2.0 for WordPress, as demonstrated by the shortcode parameter in a woof_redraw_woof action. The plugin implemented a page redraw AJAX function accessible to anyone without any authentication. WordPress shortcode markup in the "shortcode" parameters would be evaluated. Normally unauthenticated users can't evaluate shortcodes as they are often sensitive.

Do I need to act?

!
23.8% chance of exploitation in next 30 days
EPSS score — higher than 76% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Woocommerce-Filter

References (6)

Third Party Advisory https://sec-consult.com/en/blog/advisories/arbitrary-shortcode-execution-local-f...
Release Notes https://wordpress.org/plugins/woocommerce-products-filter/#developers
Vendor Advisory https://www.woocommerce-filter.com/update-woocommerce-products-filter-v-2-2-0/
Third Party Advisory https://sec-consult.com/en/blog/advisories/arbitrary-shortcode-execution-local-f...
Release Notes https://wordpress.org/plugins/woocommerce-products-filter/#developers
Vendor Advisory https://www.woocommerce-filter.com/update-woocommerce-products-filter-v-2-2-0/
51
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 14/34 · Moderate
Exposure 5/34 · Minimal