Arbitrary file upload in Catch Themes Demo Import
CVE-2021-39352
The Catch Themes Demo Import WordPress plugin is vulnerable to arbitrary file uploads via the import functionality found in the ~/inc/CatchThemesDemoImport.php file, in versions up to and including 1.7, due to insufficient file type valida…
Vulnerability class: Unrestricted File Upload
EPSS: 0.756 (98.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Catch Themes Demo Import — versions 1.7
Weakness classification (CWE)
Public proof-of-concept exploits
References
- www.wordfence.com/vulnerability-advisories/ (x_refsource_MISC)
- plugins.trac.wordpress.org/changeset/2617555/catch-themes-demo-import/trunk/inc… (x_refsource_MISC)
- github.com/BigTiger2020/word-press/blob/main/Catch Themes Demo Import.md (x_refsource_MISC)
- packetstormsecurity.com/files/165207/WordPress-Catch-Themes-Demo-Import-1.6.1-S… (x_refsource_MISC)
- packetstormsecurity.com/files/165463/WordPress-Catch-Themes-Demo-Import-Shell-U… (x_refsource_MISC)
- github.com/Hacker5preme/Exploits/tree/main/Wordpress/CVE-2021-39352 (x_refsource_MISC)
- www.exploit-db.com/exploits/50580 (x_refsource_MISC)
Frequently asked questions
- What is CVE-2021-39352?
- CVE-2021-39352 is a high-severity vulnerability in Catch Themes Demo Import, classified under Unrestricted Upload of File with Dangerous Type. CVSS score: 7.2/10. Published 2021-10-21.
- How severe is CVE-2021-39352?
- High severity. CVSS v3 base score is 7.2 out of 10.
- Is CVE-2021-39352 known to be exploited?
- 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.