WordPress < 4.9.9 Remote Code Execution Vulnerabilities
Medium Nessus Plugin ID 125597
SynopsisA PHP application running on the remote web server is affected by remote code execution vulnerabilities.
DescriptionAccording to its self-reported version number, the WordPress application running on the remote web server is prior to 4.9.9. It is, therefore, affected by remote command execution vulnerabilities in its thumbnail processing component due to insufficient validation of user input. An authenticated, remote attacker can exploit this, by uploading a malicious thumbnail, to execute arbitrary commands. (CVE-2017-1000600, CVE-2018-1000773).
Note that WordPress originally issued a fix for CVE-2017-1000600 but this fix was deemed insufficient and exploitation was still possible. Thus, CVE-2018-1000773 was opened and addressed in version 4.9.9.
SolutionUpgrade to WordPress version 4.9.9 or later.