Remote Code Execution in elFinder Plugin for Unsupported WordPress Versions

Remote Code Execution in elFinder Plugin for Unsupported WordPress Versions

CVE-2020-35235 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

vendor/elfinder/php/connector.minimal.php in the secure-file-manager plugin through 2.5 for WordPress loads elFinder code without proper access control. Thus, any authenticated user can run the elFinder upload command to achieve remote code execution. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

Learn more about our Wordpress Pen Testing.