CVE-2016-15042

CRITICAL EXPLOITED NUCLEI LAB

WordPress <4.0, WordPress <1.1 - Unauthenticated RCE

Title source: llm

Description

The Frontend File Manager (versions < 4.0), N-Media Post Front-end Form (versions < 1.1) plugins for WordPress are vulnerable to arbitrary file uploads due to missing file type validation via the `nm_filemanager_upload_file` and `nm_postfront_upload_file` AJAX actions. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible.

Exploits (2)

nomisec WORKING POC 1 stars
by ImBIOS · poc
https://github.com/ImBIOS/lab-cve-2016-15042
nomisec SUSPICIOUS
by Aditya43621 · poc
https://github.com/Aditya43621/lab-cve-2016-15042

Nuclei Templates (1)

WordPress Frontend File Manager < 4.0 & N-Media Post Frontend < 1.1 - Arbitrary File Upload
CRITICALVERIFIEDby jsnv-dev

References (6)

Scores

CVSS v3 9.8
EPSS 0.7385
EPSS Percentile 98.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Lab Environment

COMMUNITY
Community Lab
docker pull wordpress:php7.4-apache
docker pull wordpress:cli-php7.4

Details

VulnCheck KEV 2024-10-15
CWE
CWE-434
Status published
Products (4)
najeebmedia/frontend_file_manager < 4.0
najeebmedia/post_front-end_form < 1.1
nmedia/Frontend File Manager Plugin < 4.0
nmedia/N-Media Post Front-end Form < 1.0
Published Oct 16, 2024
Tracked Since Feb 18, 2026