OS DataHub Maps WordPress Plugin Arbitrary File Upload Vulnerability

A vulnerability allowing arbitrary file uploads has been identified in the OS DataHub Maps plugin for WordPress, affecting all versions through 1.8.3. The issue arises from improper validation of file types in the 'OS_DataHub_Maps_Admin::add_file_and_ext' function. This flaw enables authenticated attackers with Author-level access or higher to upload arbitrary files to the server, potentially leading to remote code execution.

Impact

Exploitation of this vulnerability could allow for arbitrary file uploads, with the potential for remote code execution on the affected server.

Reproduction

To reproduce this vulnerability, an authenticated user with Author-level access or higher can upload files through the WordPress admin interface. The 'OS_DataHub_Maps_Admin::add_file_and_ext' function will incorrectly validate the file type, allowing dangerous file extensions to be uploaded.

Remediation

Users are advised to update the OS DataHub Maps WordPress plugin to version 1.8.4 or later.