Description

A remote code execution (RCE) vulnerability exists in qdPM 9.1 and earlier. An attacker can upload a malicious PHP code file via the profile photo functionality, by leveraging a path traversal vulnerability in the users['photop_preview'] delete photo feature, allowing bypass of .htaccess protection. NOTE: this issue exists because of an incomplete fix for CVE-2015-3884.

Remediation

References

CVE-2020-7246

Related Vulnerabilities

WordPress Plugin Top 10-Popular posts for WordPress Cross-Site Scripting (3.2.2)

WordPress Plugin Brizy-Page Builder Multiple Vulnerabilities (2.4.43)

ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-8143)

WordPress Plugin Estatik Real Estate Arbitrary File Upload (2.2.5)

Oracle JRE CVE-2013-1518 Vulnerability (CVE-2013-1518)

Severity

High

Classification

CVE-2020-7246 CWE-22 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities