CVE-2024-6366

Published Jul 29, 2024

Last updated 9 months ago

CVSS critical 9.1

Overview

Description: The User Profile Builder WordPress plugin before 3.11.8 does not have proper authorisation, allowing unauthenticated users to upload media files via the async upload functionality of WP.
Source: contact@wpscan.com
NVD status: Analyzed
Products: profile_builder

Risk scores

CVSS 3.1

Type: Secondary
Base score: 9.1
Impact score: 5.2
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Severity: CRITICAL

Weaknesses

nvd@nist.gov: CWE-434

Hype score: Not currently trending

CVE-2024-6366 #User #Profile Builder <= 3.11.7 - #Unauthenticated #Media Upload PoC: https://t.co/fWatBzympj #Hacking #WordPress #Trump
@Nxploited
2 Feb 2025
138 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cozmoslabs:profile_builder:*:*:*:*:*:wordpress:*:*",
            "matchCriteriaId": "12F10CEF-3C0A-43A0-A868-EAE5FC040B09",
            "versionEndExcluding": "3.11.8",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

Related CVEs

References