WordPress File Upload Plugin Remote Code Execution Vulnerability

A remote code execution vulnerability has been identified in the WordPress File Upload plugin, affecting all versions through 4.24.15. The issue arises in the 'wfu_file_downloader.php' file, where improper sanitization of the 'source' parameter allows for directory traversal. This vulnerability enables unauthenticated attackers to execute arbitrary code on the server, as well as read and delete arbitrary files.

Impact

Exploitation of this vulnerability allows for unauthenticated remote code execution on the server, as well as arbitrary file reading and deletion.

Reproduction

To reproduce this vulnerability, send a request to the 'wfu_file_downloader.php' file with a crafted 'source' parameter that exploits the lack of proper sanitization. The 'source' parameter can be manipulated to traverse directories and access sensitive files or execute malicious code.

Remediation

Users are advised to update the WordPress File Upload plugin to version 4.25.0 or later.