CVE-2024-13418

HIGH

WordPress - Arbitrary File Uploads

Title source: llm

Description

Multiple plugins and/or themes for WordPress are vulnerable to Arbitrary File Uploads due to a missing capability check on the ajaxUploadFonts() function in various versions. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files that can make remote code execution possible. This issue was escalated to Envato over two months from the date of this disclosure and the issue, while partially patched, is still vulnerable.

References (2)

Core 2

Core References

Product

https://themeforest.net/item/beyot-wordpress-real-estate-theme/19514964

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/bced4547-3264-43dc-8bb1-89a06f74ccbd?source=cve

Scores

CVSS v3 8.8

EPSS 0.0135

EPSS Percentile 80.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-434

Status published

Products (8)

g5plus/april < 5.1

g5plus/auteur < 7.1

g5plus/benaa < 4.0.0

g5plus/beyot < 6.0.6

G5Theme/April Framework < 5.1

G5Theme/Auteur Framework < 7.1

G5Theme/Benaa Framework < 4.0.0

G5Theme/Beyot Framework < 6.0.6

Published May 02, 2025

Tracked Since Feb 18, 2026