← Back to CVEs

CVE-2021-4225

HIGH

8.8

Description

The SP Project & Document Manager WordPress plugin before 4.24 allows any authenticated users, such as subscribers, to upload files. The plugin attempts to prevent PHP and other similar files that could be executed on the server from being uploaded by checking the file extension. It was discovered that on Windows servers, the security checks in place were insufficient, enabling bad actors to potentially upload backdoors on vulnerable sites.

CVE Details

CVSS v3.1 Score8.8

SeverityHIGH

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredLOW

User InteractionNONE

Published4/25/2022

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

microsoft:windowssmartypantsplugins:sp_project_\&_document_manager

Weaknesses (CWE)

CWE-434

References

https://github.com/pang0lin/CVEproject/blob/main/wordpress_SP-Project_fileupload.md(contact@wpscan.com)

https://wpscan.com/vulnerability/bd1083d1-edcc-482e-a8a9-c8b6c8d417bd(contact@wpscan.com)

https://github.com/pang0lin/CVEproject/blob/main/wordpress_SP-Project_fileupload.md(af854a3a-2127-422b-91ae-364da2661108)

https://wpscan.com/vulnerability/bd1083d1-edcc-482e-a8a9-c8b6c8d417bd(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.