CVE-2020-36847
Simple File List < 4.2.3 - Remote Code Execution
Description
The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 4.2.2 via the rename function which can be used to rename uploaded PHP code with a png extension to use a php extension. This allows unauthenticated attackers to execute code on the server.
In plain language
AI Act nowSimple File List (a WordPress plugin) before 4.2.3 lets an attacker upload a disguised file and run code on your server without any login—this is serious and should worry typical small businesses using the plugin.
CVE-2020-36847 is an unauthenticated Remote Code Execution in the Simple File List WordPress plugin (versions up to 4.2.2) where attackers can upload a malicious PHP file disguised as an image and abuse the file-rename behavior to execute arbitrary code on the server.
What to do now
- Check whether your WordPress site has the “Simple File List” plugin installed and active, and note its exact version number.
- If the plugin version is 4.2.2 or older (anything before 4.2.3), update it to 4.2.3.
- If you cannot update right away, temporarily disable and remove the Simple File List plugin until it can be updated.
- After updating, verify the site’s uploaded files and web-accessible directories don’t contain unexpected .php files or webshell-like scripts, and review server/web logs for suspicious uploads or rename activity.
composer require simple-file-list/simple-file-list:^4.2.3CVSS Vector Breakdown
AV:NAttack VectorAC:LAttack ComplexityPR:NPrivileges RequiredUI:NUser InteractionS:UScopeC:HConfidentialityI:HIntegrityA:HAvailabilityWeaknesses
Affected Products
Exploitability
Exploit details including PoC links, Metasploit modules, and scanner templates are available after registration.
View exploit detailsAttack Graph
Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/⌘ + scroll to zoom, or go fullscreen.
MITRE ATT&CK
3 techniquesReferences
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2020-36847 and every CVE in our database. Create a free account — no credit card required.
Create Free Account