Elementor < 2.7.5 - Authenticated Arbitrary File Upload



Description
"The Elementor plugin (version 2.7.4 and below) was found to be vulnerable to an arbitrary file upload. Due to the application not handling zip files with directories properly an attacker could upload php files which were executable, this allowed any user able to import templates (WordPress role “Contributor” or above) to execute commands on the underlying server."

Affects Plugin

fixed in version 2.7.5

References

CVE 2020-7055
URL https://pentest.co.uk/labs/advisory/cve-2020-7055/
URL https://pentest.co.uk/labs/vulnerability-disclosure-cve-2020-7055/
Youtube Video

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Original Researcher Sam Thomas and Kyle Fleming
Views 1170
Verified No
WPVDB ID 10222

Timeline

Publicly Published 2020-01-14 (6 months ago)
Added 2020-05-13 (about 2 months ago)
Last Updated 2020-05-14 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin