WordPress Shortcode Ajax Plugin Arbitrary Shortcode Execution Vulnerability
Vulnerability
A vulnerability exists in the Shortcode Ajax plugin for WordPress, allowing for arbitrary shortcode execution. This issue affects all versions of the plugin up to and including 1.0. The vulnerability arises because the plugin does not properly validate user-supplied values before executing shortcodes, enabling unauthenticated attackers to execute arbitrary shortcodes on the site.
Impact
Exploitation of this vulnerability allows for unauthorized execution of shortcodes, which could lead to various impacts depending on the executed shortcode.
Reproduction
To reproduce this vulnerability, send a POST request to the WordPress site with the 'code' parameter containing the shortcode to be executed. The 'fetch_content_call' function will process the request, execute the shortcode, and return the output via AJAX.
Remediation
No known patch is available. It is recommended to uninstall the affected plugin and find a replacement.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.