CVE-2024-7627

HIGH

Bitapps File Manager < 6.5.6 - Race Condition

Title source: rule

Description

The Bit File Manager plugin for WordPress is vulnerable to Remote Code Execution in versions 6.0 to 6.5.5 via the 'checkSyntax' function. This is due to writing a temporary file to a publicly accessible directory before performing file validation. This makes it possible for unauthenticated attackers to execute code on the server if an administrator has allowed Guest User read permissions.

Exploits (2)

nomisec WORKING POC 6 stars

by siunam321 · poc

https://github.com/siunam321/CVE-2024-7627-PoC

View Code ZIP pw:eip

nomisec WORKING POC

by lkmn1 · poc

https://github.com/lkmn1/CVE-2024-7627

View Code ZIP pw:eip

References (4)

[Product] https://plugins.trac.wordpress.org/browser/file-manager/trunk/backend/app/Providers/FileEditValidator.php#L39

[Product] https://plugins.trac.wordpress.org/browser/file-manager/trunk/backend/app/Providers/FileEditValidator.php#L88

[Patch] https://plugins.trac.wordpress.org/changeset/3138710/

[Third Party Advisory] https://www.wordfence.com/threat-intel/vulnerabilities/id/5f29de7a-3f15-4b6d-aad7-6a08151e2113?source=cve

Scores

CVSS v3 8.1

EPSS 0.2856

EPSS Percentile 96.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-362 CWE-94

Status published

Affected Products (1)

bitapps/file_manager < 6.5.6

Timeline

Published Sep 05, 2024

Tracked Since Feb 18, 2026