CVE-2023-4596

CRITICAL EXPLOITED NUCLEI LAB

Forminator <1.24.6 - File Upload

Title source: llm

Description

The Forminator plugin for WordPress is vulnerable to arbitrary file uploads due to file type validation occurring after a file has been uploaded to the server in the upload_post_image() function in versions up to, and including, 1.24.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

Exploits (4)

exploitdb WORKING POC
by Mehmet Kelepçe · textwebappsphp
https://www.exploit-db.com/exploits/51664
nomisec WORKING POC 24 stars
by E1A · remote
https://github.com/E1A/CVE-2023-4596
nomisec SCANNER 1 stars
by X-Projetion · poc
https://github.com/X-Projetion/CVE-2023-4596-OpenSSH-Multi-Checker
nomisec WORKING POC
by X-Projetion · remote
https://github.com/X-Projetion/CVE-2023-4596-Vulnerable-Exploit-and-Checker-Version

Nuclei Templates (1)

WordPress Plugin Forminator 1.24.6 - Arbitrary File Upload
CRITICALVERIFIEDby E1A
Shodan: http.html:/wp-content/plugins/forminator
FOFA: body=/wp-content/plugins/forminator

References (3)

Scores

CVSS v3 9.8
EPSS 0.9078
EPSS Percentile 99.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Lab Environment

COMMUNITY
Community Lab
docker pull wordpress:latest

Details

VulnCheck KEV 2023-08-29
CWE
CWE-434
Status published
Products (2)
incsub/forminator < 1.24.6
wpmudev/Forminator Forms – Contact Form, Payment Form & Custom Form Builder < 1.24.6
Published Aug 30, 2023
Tracked Since Feb 18, 2026