CVE-2024-2694
Betheme <= 27.5.6 - Authenticated (Contributor+) PHP Object InjectionThe Betheme theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 27.5.6 via deserialization of untrusted input of the 'mfn-page-items' post meta value. This makes it possible for authenticated attackers, with contributor-level access and above, to inject a PHP Object. No known POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.
We have discovered 87,358 live websites that are affected by CVE-2024-2694.
Affected Software
| Product | |
| Category | Wordpress Themes |
| Vulnerable Domains | 87,358 live websites (78.84% of BeTheme install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 594 versions ( 97.70% of all versions) |
Common Weakness Enumeration
CWE-502 Deserialization of Untrusted DataDetails
- Published - Aug 30, 2024
- Updated - Aug 30, 2024
Credits
- Francesco Carlucci (finder)
CWE
CVE References
CWE References
CVE-2024-2694 usage by Country
 United States | 25,651 websites |
 Germany | 12,779 websites |
 France | 5,267 websites |
 Brazil | 3,401 websites |
 Italy | 3,191 websites |
 Poland | 2,879 websites |
 GB | 2,513 websites |
 Spain | 2,452 websites |
 Netherlands | 2,210 websites |
 Russia | 1,838 websites |
CVE-2024-2694 usage by TLD
| .com | 32,643 websites |
| .de | 6,464 websites |
| .com.br | 4,489 websites |
| .fr | 2,992 websites |
| .it | 2,842 websites |
| .org | 2,654 websites |
| .pl | 2,280 websites |
| .nl | 2,235 websites |
| .co.uk | 1,659 websites |
| .ru | 1,481 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-2694
Top websites that are affected by CVE-2024-2694. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *********.nl | United States | *,*** | |
| ***********.com | United States | *,*** | |
| *****.com | United States | **,*** | |
| *****************.com | United States | **,*** | |
| **********.nl | Germany | **,*** | |
| ******.fr | France | **,*** | |
| ****************************.com | United States | **,*** | |
| **********.com | United States | **,*** | |
| **********.com | United States | **,*** | |
| ***************.com | United States | **,*** |
FAQ
CVE-2024-2694 is Deserialization of Untrusted Data in BeTheme
A total of 87,358 websites have been identified as vulnerable to CVE-2024-2694, discovered through global website indexing conducted by WebTechSurvey.
BeTheme is susceptible to CVE-2024-2694 vulnerability.
BeTheme versions before, and including, 27.5.6 are vulnerable to CVE-2024-2694.