CVE-2024-5335

CVSS V2 None CVSS V3 None

Description

The Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider plugin is vulnerable to PHP Object Injection via deserialization of untrusted input via the _ultimate_store_kit_compare_products cookie in versions up to , and including, 1.6.4. This makes it possible for an unauthenticated attacker to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker or above to delete arbitrary files, retrieve sensitive data, or execute code.

Overview

CVE ID
CVE-2024-5335

Assigner
Wordfence

Vulnerability Status
PUBLISHED

Published Version
2024-08-21T08:29:14.736Z

Last Modified Date
2024-08-21T15:46:39.075Z

Weakness Enumerations

CWE	URL
CWE-502	http://cwe.mitre.org/data/definitions/502.html

References

Reference URL	Reference Tags
https://www.wordfence.com/threat-intel/vulnerabilities/id/2ae44bcb-6149-4661-8890-23c867e9a918?source=cve
https://plugins.trac.wordpress.org/browser/ultimate-store-kit/trunk/includes/helper.php#L1103
https://plugins.trac.wordpress.org/changeset/3135472/ultimate-store-kit/trunk/includes/helper.php

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-5335
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5335

History

Created	Old Value	New Value	Data Type	Notes
2024-08-22 13:10:37				Added to TrackCVE