CVE-2024-6828
Redux Framework 4.4.12 - 4.4.17 - Unauthenticated JSON File Upload to Stored Cross-Site ScriptingThe Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due to missing authorization and capability checks on the Redux_Color_Scheme_Import function in versions 4.4.12 to 4.4.17. This makes it possible for unauthenticated attackers to upload JSON files, which can be used to conduct stored cross-site scripting attacks and, in some rare cases, when the wp_filesystem fails to initialize - to Remote Code Execution.
We have discovered 29,835 live websites that are affected by CVE-2024-6828.
Affected Software
| Product |  Redux Framework |
| Category | JavaScript Frameworks |
| Vulnerable Domains | 29,835 live websites (10.35% of Redux Framework install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 10 versions ( 5.88% of all versions) |
Common Weakness Enumeration
CWE-434 Unrestricted Upload of File with Dangerous TypeDetails
- Published - Jul 23, 2024
- Updated - Aug 1, 2024
Credits
- Villu Orav (finder)
CWE
CVE References
CWE References
CVE-2024-6828 usage by Country
 United States | 10,461 websites |
 Germany | 3,516 websites |
 France | 1,872 websites |
 Cyprus | 1,372 websites |
 GB | 1,069 websites |
 Italy | 806 websites |
 Poland | 689 websites |
 Turkey | 669 websites |
 Spain | 636 websites |
 Netherlands | 572 websites |
CVE-2024-6828 usage by TLD
| .com | 13,497 websites |
| .org | 1,237 websites |
| .de | 1,125 websites |
| .it | 741 websites |
| .co.uk | 681 websites |
| .com.br | 677 websites |
| .net | 661 websites |
| .pl | 599 websites |
| .fr | 590 websites |
| .nl | 577 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-6828
Top websites that are affected by CVE-2024-6828. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *****.pl | Poland | *,*** | |
| *******************.nl | United States | **,*** | |
| ***.ai | United States | **,*** | |
| ************.com | United States | **,*** | |
| ****.**.tt | United States | **,*** | |
| *****************.pl | Poland | **,*** | |
| **********************.com | United States | **,*** | |
| ************.de | Germany | **,*** | |
| ***********.io | United States | **,*** | |
| ***************.de | Germany | **,*** |
FAQ
CVE-2024-6828 is Unrestricted Upload of File with Dangerous Type in Redux Framework
A total of 29,835 websites have been identified as vulnerable to CVE-2024-6828, discovered through global website indexing conducted by WebTechSurvey.
Redux Framework is susceptible to CVE-2024-6828 vulnerability.
Redux Framework versions before, and including, 4.4.17 are vulnerable to CVE-2024-6828.
References
- https://www.wordfence.com/threat-intel/vulnerabilities/id/18a37063-31aa-4b1f-b1a5-1ea921a20686?source=cve
- https://core.trac.wordpress.org/browser/tags/6.5.4/src/wp-includes/class-wp-theme-json.php#L1690
- https://plugins.trac.wordpress.org/browser/redux-framework/tags/4.4.17/redux-core/inc/extensions/color_scheme/color_scheme/class-redux-color-scheme-import.php#L75
- https://plugins.trac.wordpress.org/browser/redux-framework/tags/4.4.17/redux-core/inc/classes/class-redux-helpers.php#L938
- https://plugins.trac.wordpress.org/browser/redux-framework/tags/4.4.17/redux-core/inc/fields/typography/redux-typography.js#L646
- https://plugins.trac.wordpress.org/browser/redux-framework/trunk/redux-core/inc/classes/class-redux-filesystem.php#L166
- https://plugins.trac.wordpress.org/browser/redux-framework/tags/4.4.17/redux-core/inc/classes/class-redux-filesystem.php#L614