CVE-2022-0316
Multiple themes - Unauthenticated Arbitrary File Upload
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
The WeStand WordPress theme before 2.1, footysquare WordPress theme, aidreform WordPress theme, statfort WordPress theme, club-theme WordPress theme, kingclub-theme WordPress theme, spikes WordPress theme, spikes-black WordPress theme, soundblast WordPress theme, bolster WordPress theme from ChimpStudio and PixFill does not have any authorisation and upload validation in the lang_upload.php file, allowing any unauthenticated attacker to upload arbitrary files to the web server.
El tema WeStand de WordPress anterior a 2.1, el tema de WordPress footysquare, el tema de WordPress Aidreform, el tema de WordPress statfort, el tema de WordPress con tema club, el tema de WordPress con tema kingclub, el tema de WordPress Spikes, el tema de WordPress Spikes-Black, el tema de WordPress Soundblast, el tema de WordPress de refuerzo de ChimpStudio y PixFill no tiene ninguna autorizaciĆ³n ni validaciĆ³n de carga en el archivo lang_upload.php, lo que permite que cualquier atacante no autenticado cargue archivos arbitrarios al servidor web.
Several themes from Chimpstudio and Pixfill are vulnerable to arbitrary file uploads due to missing file type validation and authorization in various versions. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-01-20 CVE Reserved
- 2022-12-29 CVE Published
- 2024-08-02 CVE Updated
- 2024-08-02 First Exploit
- 2024-12-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-434: Unrestricted Upload of File with Dangerous Type
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/KTN1990/CVE-2022-0316_wordpress_multiple_themes_exploit | 2024-09-05 | |
| https://wpscan.com/vulnerability/9ab3d6cf-aad7-41bc-9aae-dc5313f12f7c | 2024-08-02 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Aidreform Project Search vendor "Aidreform Project" | Aidreform Search vendor "Aidreform Project" for product "Aidreform" | - | wordpress |
Affected
| ||||||
| Chimpgroup Search vendor "Chimpgroup" | Bolster Search vendor "Chimpgroup" for product "Bolster" | - | wordpress |
Affected
| ||||||
| Chimpgroup Search vendor "Chimpgroup" | Spikes Search vendor "Chimpgroup" for product "Spikes" | - | wordpress |
Affected
| ||||||
| Chimpgroup Search vendor "Chimpgroup" | Westand Search vendor "Chimpgroup" for product "Westand" | < 2.1 Search vendor "Chimpgroup" for product "Westand" and version " < 2.1" | wordpress |
Affected
| ||||||
| Club-theme Project Search vendor "Club-theme Project" | Club-theme Search vendor "Club-theme Project" for product "Club-theme" | - | wordpress |
Affected
| ||||||
| Footysquare Project Search vendor "Footysquare Project" | Footysquare Search vendor "Footysquare Project" for product "Footysquare" | - | wordpress |
Affected
| ||||||
| Pixfill Search vendor "Pixfill" | Kings Club Search vendor "Pixfill" for product "Kings Club" | - | wordpress |
Affected
| ||||||
| Soundblast Project Search vendor "Soundblast Project" | Soundblast Search vendor "Soundblast Project" for product "Soundblast" | - | wordpress |
Affected
| ||||||
| Spikes-black Project Search vendor "Spikes-black Project" | Spikes-black Search vendor "Spikes-black Project" for product "Spikes-black" | - | wordpress |
Affected
| ||||||
| Statfort Project Search vendor "Statfort Project" | Statfort Search vendor "Statfort Project" for product "Statfort" | - | wordpress |
Affected
| ||||||