WordPress Plugin Peugeot Music Arbitrary File Upload Vulnerability

An arbitrary file upload vulnerability has been identified in WordPress Plugin Peugeot Music version 1.0. This vulnerability allows unauthenticated attackers to upload malicious files by sending POST requests to the upload.php endpoint. Exploitation involves manipulating the 'name' parameter to upload files with arbitrary extensions, which can then be executed from the uploads directory.

Impact

Exploitation of this vulnerability could lead to unauthorized file uploads, allowing attackers to execute malicious files on the server.

Reproduction

To reproduce this vulnerability, send a POST request to the upload.php endpoint within the Peugeot Music plugin directory. Include a file in the 'file' parameter and manipulate the 'name' parameter to give the file an executable extension, such as .php. The uploaded file will be accessible from the uploads directory, where it can be executed on the server.