CVE-2021-24145

UNRATEDRemote code exec

Public PoCHigh EPSS

Description

Arbitrary file upload in the Modern Events Calendar Lite WordPress plugin, versions before 5.16.5, did not properly check the imported file, allowing PHP ones to be uploaded by administrator by using the 'text/csv' content-type in the request.

Affected products

Unknown / Modern Events Calendar Lite5.16.5 – 5.16.5

Exploits & proofs of concept

nucleiWordPress Modern Events Calendar Lite <5.16.5 - Authenticated Arbitrary File Uploadby theamanrawat

References

MISChttps://wpscan.com/vulnerability/f42cc26b-9aab-4824-8168-b5b8571d1610
EXPLOIThttp://packetstormsecurity.com/files/163346/WordPress-Modern-Events-Calendar-5.16.2-Shell-Upload.html
EXPLOIThttp://packetstormsecurity.com/files/163672/WordPress-Modern-Events-Calendar-Remote-Code-Execution.html