WordPress Plugin Vulnerabilities

ImageMagick-Engine < 1.7.6 - Command Injection via CSRF

Description

The plugin is missing CSRF checks in multiple actions, which could allow attackers to make a logged in admin perform unwanted actions. In this case, it could lead to RCE via Command Injection

Proof of Concept

https://example.com/wp-admin/admin-ajax.php?action=ime_test_im_path&cli_path=payload

Affects Plugins

Plugin icon
imagemagick-engine
Fixed in 1.7.6

References

CVE
CVE-2022-2441
Exploitdb
51025
URL
https://packetstormsecurity.com/files/#168722/

Classification

Type
COMMAND INJECTION
OWASP top 10
A1: Injection
CWE
CWE-78
CVSS
7.1 (high)

Miscellaneous

Original Researcher
ABDO10
Verified
No
WPVDB ID
0589c52a-93e4-4cbd-9147-90073d74c88f

Timeline

Publicly Published
2022-10-18 (about 1 years ago)
Added
2022-10-19 (about 1 years ago)
Last Updated
2022-10-27 (about 1 years ago)

Other

Published
Title
Published
2022-07-22
Title
VR Calendar < 2.3.2 - Unauthenticated Arbitrary Function Call
Published
2023-10-05
Title
Newsletter Lite < 4.9.3 - Admin+ Command Injection
Published
2023-12-22
Title
Backup Migration < 1.4.0 - Authenticated (Admin+) OS Command Injection via url
Published
2024-05-09
Title
Unlimited Elements For Elementor (Free Widgets, Addons, Templates) < 1.5.103 - Admin+ Command Injection
Published
2021-09-15
Title
PDF Light Viewer < 1.4.12 - Authenticated Command Injection