WordPress Task Manager Plugin Arbitrary File Read Vulnerability

A vulnerability allowing arbitrary file read has been identified in the Task Manager plugin for WordPress, affecting all versions through 3.0.2. The issue arises in the callback_get_text_from_url() function, where authenticated attackers with Subscriber-level access or higher can read the contents of arbitrary files on the server, potentially exposing sensitive information.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information stored in files on the server.

Reproduction

To reproduce this vulnerability, an authenticated user with Subscriber-level access or higher can send a request to the 'wp_ajax_get_text_from_url_tm' action. This request must include a 'content' parameter specifying the URL of the file to be read. The response will include the contents of the specified file, which can contain sensitive information.

Remediation

No known patch is available for this vulnerability. Users are advised to uninstall the affected plugin and find a replacement.