Vulnerability Description
The Unlimited Addons for WPBakery Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'importZipFile' function in versions up to, and including, 1.0.42. This makes it possible for authenticated attackers with a role that the administrator previously granted access to the plugin (the default is editor role, but access can also be granted to contributor role), to upload arbitrary files on the affected site's server which may make remote code execution possible.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Unitecms | Unlimited Addons For Wpbakery Page Builder | <= 1.0.42 |
Related Weaknesses (CWE)
References
- https://plugins.trac.wordpress.org/browser/unlimited-addons-for-wpbakery-page-buIssue Tracking
- https://www.wordfence.com/threat-intel/vulnerabilities/id/a78b76d6-4068-4141-972Third Party Advisory
- https://plugins.trac.wordpress.org/browser/unlimited-addons-for-wpbakery-page-buIssue Tracking
- https://www.wordfence.com/threat-intel/vulnerabilities/id/a78b76d6-4068-4141-972Third Party Advisory
FAQ
What is CVE-2023-6925?
CVE-2023-6925 is a vulnerability with a CVSS score of 7.2 (HIGH). The Unlimited Addons for WPBakery Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'importZipFile' function in versions up to, ...
How severe is CVE-2023-6925?
CVE-2023-6925 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-6925?
Check the references section above for vendor advisories and patch information. Affected products include: Unitecms Unlimited Addons For Wpbakery Page Builder.