The BuddyPress Xprofile Custom Field Types plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete_field' function in all versions up to, and including, 1.2.8. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).
The BuddyPress Xprofile Custom Field Types WordPress plugin contains a path traversal vulnerability allowing authenticated subscribers to delete arbitrary files on the server. This can lead to remote code execution by deleting critical files like wp-config.php.
تحتوي إضافة BuddyPress Xprofile Custom Field Types على ثغرة في التحقق من صحة مسارات الملفات في دالة delete_field. يمكن للمستخدمين المصرح لهم على مستوى المشترك وما فوقه حذف ملفات تعسفية على الخادم. يمكن أن يؤدي حذف ملفات حرجة مثل wp-config.php إلى تنفيذ أكواد بعيدة.
The BuddyPress Xprofile Custom Field Types WordPress plugin contains a path traversal vulnerability allowing authenticated subscribers to delete arbitrary files on the server. This can lead to remote code execution by deleting critical files like wp-config.php.
Update the BuddyPress Xprofile Custom Field Types plugin to version 1.2.9 or later immediately. Implement strict file path validation and restrict file deletion operations. Apply principle of least privilege to user roles and monitor file system access logs for suspicious deletion activities.
قم بتحديث إضافة BuddyPress Xprofile Custom Field Types إلى الإصدار 1.2.9 أو أحدث فوراً. طبق التحقق الصارم من مسارات الملفات وقيد عمليات حذف الملفات. طبق مبدأ أقل صلاحية على أدوار المستخدمين وراقب سجلات الوصول إلى نظام الملفات للأنشطة المريبة.