Oxygen Builder <= 4.8.2 - Authenticated (Contributor+) Remote Code Execution

The Oxygen Builder plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.8.2 via post metadata. This is due to the plugin storing custom data in post metadata without an underscore prefix. This makes it possible for lower privileged users, such as contributors, to inject arbitrary PHP code via the WordPress user interface and gain elevated privileges.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

对生成代码的控制不恰当(代码注入)

WordPress plugin Oxygen Builde 安全漏洞

WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin Oxygen Builde 4.8.2及之前版本存在安全漏洞，该漏洞源于该插件在帖子元数据中存储自定义数据时没有下划线前缀，允许攻击者通过 WordPress 用户界面注入任意 PHP 代码并获得提升的权限。

N/A

N/A