CVE-2021-24284

high-risk
Published 2021-05-14

The Kaswara Modern VC Addons WordPress plugin through 3.0.1 allows unauthenticated arbitrary file upload via the 'uploadFontIcon' AJAX action. The supplied zipfile being unzipped in the wp-content/uploads/kaswara/fonts_icon directory with no checks for malicious files such as PHP.

Do I need to act?

!
68.0% chance of exploitation in next 30 days
EPSS score — higher than 32% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Kaswara Project

References (6)

Exploit http://packetstormsecurity.com/files/167743/WordPress-Kaswara-Modern-WPBakery-Pa...
Product https://codecanyon.net/item/kaswara-modern-visual-composer-addons/19341477
Exploit https://wpscan.com/vulnerability/8d66e338-a88f-4610-8d12-43e8be2da8c5
Exploit http://packetstormsecurity.com/files/167743/WordPress-Kaswara-Modern-WPBakery-Pa...
Product https://codecanyon.net/item/kaswara-modern-visual-composer-addons/19341477
Exploit https://wpscan.com/vulnerability/8d66e338-a88f-4610-8d12-43e8be2da8c5
56
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 19/34 · Moderate
Exposure 5/34 · Minimal