A Vulnerability in WordPress File Manager Plugin Could Allow for remote Code Execution

Risk Description:

The Bhutan Computer Incident Response Team recommends WordPress website administrators about the new Vulnerability identified in the File Manager plugin which allows remote code execution. File Manager Plugin allows site Admins to upload, edit. delete files and folders directly from the WordPress backend without having to use FTP. If the vulnerability exploited successfully, it would allow attacker to upload web shell disguised inside an image file on the victim’s server. The attacker then access the web shell and take over the victim’s site.

Versions Affected:

  • File manager versions 6.0 – 6.8

Recommendations:

  • Apply appropriate updates provided by File Manager to the affected systems immediately.

References:

Team BtCIRT

Stay safe!