CVE-2023-4634: 
WordPress vulnerability analysis and mitigation

The Media Library Assistant WordPress plugin (versions up to 3.09) was found to be vulnerable to Local File Inclusion and Remote Code Execution, identified as CVE-2023-4634. The vulnerability stems from insufficient controls on file paths supplied to the 'mla_stream_file' parameter in the ~/includes/mla-stream-image.php file, where images are processed via Imagick(). This vulnerability allows unauthenticated attackers to supply files via FTP that enable directory listings, local file inclusion, and remote code execution (NVD, WPScan).

The vulnerability exists in the image processing functionality where the plugin uses Imagick() for file conversion. The exploit chain involves using FTP protocol to bypass is_file() checks, leveraging SVG files with specific formatters (including MSL and VID), and exploiting Imagick's default security configurations. The vulnerability has been assigned a CVSS v3.1 score of 9.8 (CRITICAL), indicating its severe impact potential (Wordfence).

The vulnerability affects over 70,000 WordPress installations. Successful exploitation could allow attackers to view sensitive files through Local File Inclusion, execute arbitrary code on the server, and potentially take complete control of the affected WordPress installation (SecurityOnline).

The vulnerability has been patched in version 3.10 of the Media Library Assistant plugin. Site administrators are strongly advised to update to this version immediately. Additionally, it is recommended to reinforce Imagick security policies by disabling dangerous formats such as MSL, MSVG, MVG, PS, PDF, RSVG, SVG, and XPS in the /etc/ImageMagick-X/policy.xml configuration (Patrowl).