A huge collection of 3400+ free website templates JAR theme com WP themes and more at the biggest community-driven free web design site
Home / security-advisories / All-in-One Video Gallery Plugin Authenticated Arbitrary File Upload vulnerability (CVE-2024-4033)

All-in-One Video Gallery Plugin Authenticated Arbitrary File Upload vulnerability (CVE-2024-4033)

Advisory No: TZCERT/SA/2024/05/02-2

Date of First Release: 2nd May 2024

Source: Wordfence

Software Affected: All-in-One Video Gallery plugin for WordPress

Overview:

The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 3.6.4.

Description:

The All-in-One Video Gallery plugin for WordPress is missing file type validation in the aiovg_create_attachment_from_external_image_url function. This makes it possible for authenticated attackers, with contributor access and above, to upload arbitrary files on the affected site’s server which may make remote code execution possible.

Impact:

Successful exploitation of this vulnerability may allow an attacker to take control of the affected system.

Solution:

WordPress has released a security patch for this vulnerability. Users and administrators are encouraged to apply necessary updates.

References:

  1. https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/all-in-one-video-gallery/all-in-one-video-gallery-364-authenticated-contributor-arbitrary-file-upload-via-featured-image
  2. https://wordpress.org/plugins/all-in-one-video-gallery/

Check Also

Remote Code Execution Vulnerabilities in IBM Operational Decision Manager, and IBM i Modernization Engine for Lifecycle Integration (CVE-2019-19919, CVE-2019-12384)

Advisory No: TZCERT/SA/2024/05/17-6 Date of First Release: 17th May 2024 Source: IBM Software Affected: IBM …