Description
WordPress Plugin Woocommerce CSV importer is prone to a vulnerability that lets attackers delete arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to delete arbitrary files in the context of the webserver process. WordPress Plugin Woocommerce CSV importer version 3.3.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.4.0 or latest
References
http://lenonleite.com.br/en/publish-exploits/plugin-woocommerce-csv-importer-3-3-6-rce-unlink/
https://www.youtube.com/watch?v=By7kT7UbHVk
https://www.exploit-db.com/exploits/44433/
https://plugins.trac.wordpress.org/browser/woocommerce-csvimport/trunk/readme.txt
Related Vulnerabilities
WordPress Cookies Security Bypass Weakness (1.5 - 2.3.1)
WordPress Plugin All-in-One Addons for Elementor-WidgetKit Cross-Site Scripting (2.4.3)
Moodle Insufficient Verification of Data Authenticity Vulnerability (CVE-2023-5548)
WordPress Plugin AVH Extended Categories Widgets Unspecified Vulnerability (4.0.2)
WordPress Plugin Advanced Custom Fields:Table Field Cross-Site Scripting (1.1.12)