CVE-2024-8353

Published Sep 28, 2024

Last updated 2 months ago

CVSS critical 9.8

Overview

Description
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.16.1 via deserialization of untrusted input via several parameters like 'give_title' and 'card_address'. This makes it possible for unauthenticated attackers to inject a PHP Object. The additional presence of a POP chain allows attackers to delete arbitrary files and achieve remote code execution. This is essentially the same vulnerability as CVE-2024-5932, however, it was discovered the the presence of stripslashes_deep on user_info allows the is_serialized check to be bypassed. This issue was mostly patched in 3.16.1, but further hardening was added in 3.16.2.
Source
security@wordfence.com
NVD status
Analyzed

Risk scores

CVSS 3.1

Type
Primary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

security@wordfence.com
CWE-502

Social media

Hype score
Not currently trending

  1. #exploit 1. CVE-2024-46538: PfSense Stored XSS lead to RCE https://t.co/vUesdOWtWH 2. CVE-2024-8353: GiveWP PHP Object Injection https://t.co/vP0hdnetFt 3. CVE-2024-21305: Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability https://t.co/D94i5ipdWw

    @akaclandestine

    25 Oct 2024

    1403 Impressions

    16 Retweets

    18 Likes

    9 Bookmarks

    0 Replies

    0 Quotes

  2. #exploit 1. CVE-2024-46538: PfSense Stored XSS lead to RCE https://t.co/8dNiDgVadB 2. CVE-2024-8353: GiveWP PHP Object Injection https://t.co/FuDSBkSp7w 3. CVE-2024-21305: Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability https://t.co/mTbo11WGyQ

    @ksg93rd

    24 Oct 2024

    312 Impressions

    3 Retweets

    5 Likes

    1 Bookmark

    0 Replies

    0 Quotes

Configurations

References