Vulnerability Description
The Product Addons & Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ppom_upload_file function in all versions up to, and including, 32.0.18. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible. Successful exploitation requires the PPOM Pro plugin to be installed along with a WooCommerce product that contains a file upload field to retrieve the correct nonce.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Themeisle | Product Addons \& Fields For Woocommerce | < 32.0.19 |
Related Weaknesses (CWE)
References
- https://plugins.trac.wordpress.org/changeset/3075669/woocommerce-product-addonPatch
- https://themeisle.com/plugins/ppom-pro/Product
- https://www.wordfence.com/threat-intel/vulnerabilities/id/4f95bcc3-354e-4016-9a1Third Party Advisory
- https://plugins.trac.wordpress.org/changeset/3075669/woocommerce-product-addonPatch
- https://themeisle.com/plugins/ppom-pro/Product
- https://www.wordfence.com/threat-intel/vulnerabilities/id/4f95bcc3-354e-4016-9a1Third Party Advisory
FAQ
What is CVE-2024-3962?
CVE-2024-3962 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The Product Addons & Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ppom_upload_file function in all versions up to, and...
How severe is CVE-2024-3962?
CVE-2024-3962 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2024-3962?
Check the references section above for vendor advisories and patch information. Affected products include: Themeisle Product Addons \& Fields For Woocommerce.