CVE-2024-10960: 
WordPress vulnerability analysis and mitigation

The Brizy – Page Builder plugin for WordPress contains a critical vulnerability (CVE-2024-10960) affecting versions up to and including 2.6.4. The vulnerability stems from missing file type validation in the 'storeUploads' function, which allows authenticated attackers with Contributor-level access or higher to upload arbitrary files to the affected site's server (NVD). The vulnerability has been assigned a critical CVSS score of 9.9, indicating its severe nature (Security Online).

The vulnerability is classified as an Unrestricted Upload of File with Dangerous Type (CWE-434). The flaw exists in the plugin's storeUploads function, where the absence of proper file type validation enables attackers to bypass security measures and upload files with dangerous extensions such as .php, .exe, or .sh. The vulnerability has received a CVSS v3.1 base score of 9.9 (Critical) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H (Wordfence).

The vulnerability's impact is severe as it can lead to remote code execution (RCE) on affected WordPress sites. Once exploited, attackers can potentially gain full control over the server, leading to data theft of sensitive information, website defacement, system compromise for further attacks, and potential use of the server for malicious purposes such as hosting malware or participating in botnet activities (SecMaster).

The primary mitigation is to update the Brizy – Page Builder plugin to version 2.6.5 or later, which contains the security fix. Additional recommended security measures include implementing strict access controls, deploying a Web Application Firewall (WAF) to block dangerous file uploads, regular monitoring of server logs for suspicious activities, and implementing a strict Content Security Policy (CSP) (SecMaster).