DocoDoco Store Locator WordPress Plugin Arbitrary File Upload Vulnerability

A vulnerability allowing arbitrary file uploads has been identified in the DocoDoco Store Locator plugin for WordPress, affecting all versions through 1.0.1. The issue arises from inadequate file type validation in the zip upload feature, which enables authenticated attackers with Editor-level access or higher to upload arbitrary files to the server. This vulnerability could potentially lead to remote code execution.

Impact

Exploitation of this vulnerability could allow for arbitrary file uploads, with the possibility of executing uploaded files on the server, depending on the file type and execution context.

Reproduction

To reproduce this vulnerability, an authenticated user with Editor-level access or higher can upload a zip file through the plugin's zip upload feature. The absence of proper file type validation allows for the inclusion of malicious files that could be executed on the server.

Remediation

No known patch is available. It is recommended to uninstall the affected plugin and find a replacement.