Description

WordPress Plugin Divi Builder is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible. WordPress Plugin Divi Builder version 4.5.2 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 4.5.3 or latest

References

https://www.wordfence.com/blog/2020/08/critical-vulnerability-exposes-over-700000-sites-using-divi-extra-and-divi-builder/

https://us7.campaign-archive.com/?u=9ae7aa91c578052b052b864d6&id=cb6b4b1ed3

Related Vulnerabilities

Joomla! Core 1.0.x Security Bypass (1.0.0 - 1.0.10)

WordPress Plugin CBX Petition for WordPress SQL Injection (1.0.3)

WordPress Plugin EZPZ One Click Backup Remote Code Execution (12.03.10)

WordPress Plugin WP Google Review Slider SQL Injection (11.7)

WordPress Plugin PickPlugins Product Slider for WooCommerce Cross-Site Scripting (1.13.21)

Severity

High

Classification

CVE-2020-35945 CWE-434 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Tags

Missing Update Unauthenticated File Upload