mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-31 18:51:16 +00:00
84 lines
3.0 KiB
JSON
84 lines
3.0 KiB
JSON
|
{
|
||
|
|
"id": "CVE-2024-5932",
|
||
|
|
"sourceIdentifier": "security@wordfence.com",
|
||
|
|
"published": "2024-08-20T02:15:04.240",
|
||
|
|
"lastModified": "2024-08-20T02:15:04.240",
|
||
|
|
"vulnStatus": "Received",
|
||
|
|
"cveTags": [],
|
||
|
|
"descriptions": [
|
||
|
|
{
|
||
|
|
"lang": "en",
|
||
|
|
"value": "The GiveWP \u2013 Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.14.1 via deserialization of untrusted input from the 'give_title' parameter. This makes it possible for unauthenticated attackers to inject a PHP Object. The additional presence of a POP chain allows attackers to execute code remotely, and to delete arbitrary files."
|
||
|
|
}
|
||
|
|
],
|
||
|
|
"metrics": {
|
||
|
|
"cvssMetricV31": [
|
||
|
|
{
|
||
|
|
"source": "security@wordfence.com",
|
||
|
|
"type": "Primary",
|
||
|
|
"cvssData": {
|
||
|
|
"version": "3.1",
|
||
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
|
||
|
|
"attackVector": "NETWORK",
|
||
|
|
"attackComplexity": "LOW",
|
||
|
|
"privilegesRequired": "NONE",
|
||
|
|
"userInteraction": "NONE",
|
||
|
|
"scope": "CHANGED",
|
||
|
|
"confidentialityImpact": "HIGH",
|
||
|
|
"integrityImpact": "HIGH",
|
||
|
|
"availabilityImpact": "HIGH",
|
||
|
|
"baseScore": 10.0,
|
||
|
|
"baseSeverity": "CRITICAL"
|
||
|
|
},
|
||
|
|
"exploitabilityScore": 3.9,
|
||
|
|
"impactScore": 6.0
|
||
|
|
}
|
||
|
|
]
|
||
|
|
},
|
||
|
|
"weaknesses": [
|
||
|
|
{
|
||
|
|
"source": "security@wordfence.com",
|
||
|
|
"type": "Secondary",
|
||
|
|
"description": [
|
||
|
|
{
|
||
|
|
"lang": "en",
|
||
|
|
"value": "CWE-502"
|
||
|
|
}
|
||
|
|
]
|
||
|
|
}
|
||
|
|
],
|
||
|
|
"references": [
|
||
|
|
{
|
||
|
|
"url": "https://plugins.trac.wordpress.org/browser/give/tags/3.12.0/includes/login-register.php#L235",
|
||
|
|
"source": "security@wordfence.com"
|
||
|
|
},
|
||
|
|
{
|
||
|
|
"url": "https://plugins.trac.wordpress.org/browser/give/tags/3.12.0/includes/process-donation.php#L420",
|
||
|
|
"source": "security@wordfence.com"
|
||
|
|
},
|
||
|
|
{
|
||
|
|
"url": "https://plugins.trac.wordpress.org/browser/give/tags/3.12.0/src/DonorDashboards/Tabs/EditProfileTab/AvatarRoute.php#L51",
|
||
|
|
"source": "security@wordfence.com"
|
||
|
|
},
|
||
|
|
{
|
||
|
|
"url": "https://plugins.trac.wordpress.org/browser/give/tags/3.12.0/vendor/tecnickcom/tcpdf/tcpdf.php#L7861",
|
||
|
|
"source": "security@wordfence.com"
|
||
|
|
},
|
||
|
|
{
|
||
|
|
"url": "https://plugins.trac.wordpress.org/browser/give/tags/3.12.0/vendor/vendor-prefixed/fakerphp/faker/src/Faker/ValidGenerator.php#L80",
|
||
|
|
"source": "security@wordfence.com"
|
||
|
|
},
|
||
|
|
{
|
||
|
|
"url": "https://plugins.trac.wordpress.org/changeset/3132247/",
|
||
|
|
"source": "security@wordfence.com"
|
||
|
|
},
|
||
|
|
{
|
||
|
|
"url": "https://www.wordfence.com/blog/2024/08/4998-bounty-awarded-and-100000-wordpress-sites-protected-against-unauthenticated-remote-code-execution-vulnerability-patched-in-givewp-wordpress-plugin/",
|
||
|
|
"source": "security@wordfence.com"
|
||
|
|
},
|
||
|
|
{
|
||
|
|
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/93e2d007-8157-42c5-92ad-704dc80749a3?source=cve",
|
||
|
|
"source": "security@wordfence.com"
|
||
|
|
}
|
||
|
|
]
|
||
|
|
}
|