CVE-2026-1306: WordPress midi-Synth <= 1.1.0 - Unauthenticated Arbitrary File Upload
漏洞描述
WordPress midi-Synth plugin \u003C= 1.1.0 contains an unrestricted file upload vulnerability caused by missing file type and extension validation in the 'export' AJAX action, letting unauthenticated attackers upload arbitrary files and potentially execute remote code, exploit requires attacker to obtain a valid nonce exposed in frontend JavaScript. [已公开] id: CVE-2026-1306 info: name: WordPress midi-Synth <= 1.1.0 - Unauthenticated Arbitrary File Upload author: pussycat0x severity: critical description: | WordPress midi-Synth plugin \u003C= 1.1.0 contains an unrestricted file upload vulnerability caused by missing file type and extension validation in the 'export' AJAX action, letting unauthenticated attackers upload arbitrary files and potentially execute remote code, exploit requires attacker to obtain a valid nonce exposed in frontend JavaScript. impact: | Unauthenticated attackers can upload arbitrary files and potentially execute remote code on the server. remediation: | Update to the latest version of midi-Synth plugin. reference: - https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/midi-synth/midi-synth-110-unauthenticated-arbitrary-file-upload-via-expor
FOFA 语句
暂无
影响范围
WordPress midi Synth
漏洞详情
POC:
已公开
修复建议
暂无