CVE-2024-12300

LOW

AR for WordPress <7.3 - Unauth File Upload

Title source: llm
STIX 2.1

Description

The AR for WordPress plugin for WordPress is vulnerable to unauthorized double extension file upload due to a missing capability check on the set_ar_featured_image() function in all versions up to, and including, 7.3. This makes it possible for unauthenticated attackers to upload php files leveraging a double extension attack. It's important to note the file is deleted immediately and double extension attacks only work on select servers making this unlikely to be successfully exploited.

Scores

CVSS v3 3.7
EPSS 0.0037
EPSS Percentile 29.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-862
Status published
Products (1)
webandprint/AR for WordPress < 7.3
Published Dec 13, 2024
Tracked Since Feb 18, 2026