WP Dispatcher WordPress Plugin Arbitrary File Upload Vulnerability

A vulnerability allowing arbitrary file uploads has been identified in the WP Dispatcher plugin for WordPress, affecting all versions through 1.2.0. The issue arises from inadequate file type validation in the wp_dispatcher_process_upload() function. This vulnerability enables authenticated attackers with Subscriber-level access and above to upload arbitrary files to the server, potentially leading to remote code execution. However, the presence of an .htaccess file in the upload directory restricts the ability to execute uploaded files remotely.

Impact

Exploitation of this vulnerability could allow for arbitrary file uploads, with the potential for remote code execution, depending on the nature of the uploaded files.

Reproduction

To reproduce this vulnerability, an authenticated user with Subscriber-level access or higher can upload files through the WP Dispatcher plugin's upload feature. The upload process bypasses proper file type validation, allowing any file to be uploaded to the server.

Remediation

No known patch is available for this vulnerability. It is recommended to review the vulnerability details and consider uninstalling the affected plugin.