Vulnerability Description
The Page Builder: KingComposer plugin for WordPress is vulnerable to Arbitrary File Uploads in versions up to, and including, 2.9.3 via the 'process_bulk_action' function in the 'kingcomposer/includes/kc.extensions.php' file. This makes it possible for authenticated users with author level permissions and above to upload arbitrary files onto the server which can be used to execute code on the server.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| King-Theme | Page Builder King Composer | <= 2.9.3 |
Related Weaknesses (CWE)
References
- https://blog.nintechnet.com/wordpress-kingcomposer-page-builder-fixed-multiple-cExploit
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&oldPatch
- https://wordpress.org/plugins/kingcomposer/#developersProduct
- https://www.wordfence.com/threat-intel/vulnerabilities/id/45a62dd0-386c-41b3-b8dThird Party Advisory
- https://blog.nintechnet.com/wordpress-kingcomposer-page-builder-fixed-multiple-cExploit
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&oldPatch
- https://wordpress.org/plugins/kingcomposer/#developersProduct
- https://www.wordfence.com/threat-intel/vulnerabilities/id/45a62dd0-386c-41b3-b8dThird Party Advisory
FAQ
What is CVE-2020-36701?
CVE-2020-36701 is a vulnerability with a CVSS score of 8.8 (HIGH). The Page Builder: KingComposer plugin for WordPress is vulnerable to Arbitrary File Uploads in versions up to, and including, 2.9.3 via the 'process_bulk_action' function in the 'kingcomposer/includes...
How severe is CVE-2020-36701?
CVE-2020-36701 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-36701?
Check the references section above for vendor advisories and patch information. Affected products include: King-Theme Page Builder King Composer.