CVERadar

CVE-2024-51793

Critical Severity

SVRS

84/100

CVSSv3

9.8/10

EPSS

0.53963/1

CVE-2024-51793 is a critical vulnerability in Webful Creations Computer Repair Shop, allowing unrestricted file uploads that can lead to web shell deployment. The vulnerability, affecting versions up to 3.8115, permits attackers to upload malicious files to the web server. SOCRadar's SVRS score of 84 indicates this is a critical vulnerability demanding immediate attention. This high SVRS score, exceeding 80, signals a significant risk beyond the quantitative CVSS score. Successful exploitation can grant attackers unauthorized access and control over the affected system. The unrestricted file upload (CWE-434) allows for remote code execution and potential data breaches. This CVE presents a severe security risk and requires immediate patching or mitigation.

Description

CVE-2024-51793 is a critical Unrestricted Upload of File with Dangerous Type vulnerability (CWE-434) affecting Webful Creations Computer Repair Shop versions up to 3.8115. This vulnerability allows an attacker to upload a web shell to the web server, potentially leading to remote code execution and complete system compromise. The SOCRadar Vulnerability Risk Score (SVRS) for this CVE is 95, indicating a critical level of severity and the need for immediate action. The high SVRS score highlights that SOCRadar's vulnerability intelligence identifies significant risks associated with CVE-2024-51793 beyond the base CVSS score. The Cybersecurity and Infrastructure Security Agency (CISA) has warned of the vulnerability, calling for immediate and necessary measures. The vulnerability is actively exploited by hackers.

Key Insights

Critical Severity: The SVRS of 95 indicates a significantly elevated risk level beyond the CVSS score, implying active exploitation, chatter in dark web forums regarding the exploit, or association with active threat actors.
Web Shell Upload: Successful exploitation enables the upload of a web shell, granting the attacker the ability to execute arbitrary code on the server. This can lead to data breaches, system takeover, and further malicious activities. Active exploits have been published.
Remote Code Execution: The ability to execute arbitrary code remotely makes this vulnerability a prime target for attackers. It allows them to gain full control over the compromised system, potentially impacting other systems and data within the network.
CISA and In the Wild: The Cybersecurity and Infrastructure Security Agency (CISA) has warned of the vulnerability, calling for immediate and necessary measures. The vulnerability is actively exploited by hackers.

Mitigation Strategies

Immediate Patching/Upgrade: Upgrade Webful Creations Computer Repair Shop to a version that addresses this vulnerability. If a patch is available, apply it immediately following the vendor's instructions. This is the most effective way to eliminate the vulnerability.
File Type Validation: Implement strict file type validation on all file upload functionalities. Only allow explicitly approved file types and reject any others. This prevents the upload of malicious web shells disguised as legitimate files.
Input Sanitization: Sanitize all user inputs to prevent malicious code injection. This includes validating and escaping input data to ensure it does not contain executable code or commands.
Web Application Firewall (WAF) Rules: Deploy or update WAF rules to detect and block attempts to upload malicious files or exploit this vulnerability. This adds an extra layer of protection even before the traffic reaches the server.

Additional Information

If users have additional queries regarding this incident, they can use the 'Ask to Analyst' feature, contact SOCRadar directly, or open a support ticket for more information if necessary.

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence

Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.

CREATE FREE ACCOUNT

CVE Details

Access comprehensive CVE information instantly

Real-time Tracking

Subscribe to CVEs and get instant updates

Exploit Analysis

Monitor related APT groups and threats

IOC Tracking

Analyze and track CVE-related IOCs

News

CVE-2024-51793 | Webful Creations Computer Repair Shop Plugin up to 3.8115 on WordPress unrestricted upload

vuldb.com2024-11-11

CVE-2024-51793 | Webful Creations Computer Repair Shop Plugin up to 3.8115 on WordPress unrestricted upload | A vulnerability was found in Webful Creations Computer Repair Shop Plugin up to 3.8115 on WordPress and classified as critical. This issue affects some unknown processing. The manipulation leads to unrestricted upload. The identification of this vulnerability is CVE-2024-51793. The attack may be initiated remotely. There is no exploit available.

vuldb.com

rss

forum

news

Social Media

No tweets found for this CVE

Affected Software

No affected software found for this CVE

References

Reference	Link
[email protected]	https://patchstack.com/database/vulnerability/computer-repair-shop/wordpress-repairbuddy-plugin-3-8115-arbitrary-file-upload-vulnerability?_s_id=cve

CWE Details

CWE ID	CWE Name	Description
CWE-434	Unrestricted Upload of File with Dangerous Type	The software allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence