Login Sign Up

CVE-2024-2125

8.8 HIGH
CSRF

📋 TL;DR

This CSRF vulnerability in the EnvíaloSimple WordPress plugin allows unauthenticated attackers to upload malicious files by tricking administrators into clicking malicious links. All WordPress sites using this plugin up to version 2.3 are affected. Attackers can exploit this without authentication through social engineering.

💻 Affected Systems

Products:
  • EnvíaloSimple: Email Marketing y Newsletters WordPress plugin
Versions: All versions up to and including 2.3
Operating Systems: Any OS running WordPress
Default Config Vulnerable: ⚠️ Yes
Notes: Requires plugin activation and administrator interaction with malicious link

📦 What is this software?

Envialosimple by Donweb

View all CVEs affecting Envialosimple →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete site compromise through webshell upload leading to data theft, defacement, or ransomware deployment

🟠

Likely Case

Malicious file upload enabling backdoor access, spam distribution, or credential harvesting

🟢

If Mitigated

No impact if proper CSRF protections are implemented or plugin is disabled

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires social engineering to trick administrators but technical complexity is minimal

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version after 2.3

Vendor Advisory: https://plugins.trac.wordpress.org/browser/envialosimple-email-marketing-y-newsletters-gratis

Restart Required: No

Instructions:

1. Update plugin to latest version via WordPress admin panel
2. Verify version is >2.3
3. Clear any cached plugin files

🔧 Temporary Workarounds

Disable vulnerable plugin

all

Temporarily deactivate EnvíaloSimple plugin until patched

wp plugin deactivate envialosimple-email-marketing-y-newsletters-gratis

Implement CSRF protection middleware

all

Add custom WordPress filter to validate nonces for all plugin requests

Add custom PHP filter in theme functions.php or custom plugin

🧯 If You Can't Patch

  • Remove plugin entirely and use alternative email marketing solution
  • Implement strict file upload restrictions at web server level

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel for plugin version ≤2.3

Check Version:

wp plugin get envialosimple-email-marketing-y-newsletters-gratis --field=version

Verify Fix Applied:

Confirm plugin version >2.3 and test gallery upload functionality

📡 Detection & Monitoring

Log Indicators:

  • Unauthorized file uploads to /wp-content/uploads/envialosimple/
  • POST requests to gallery.php without valid nonce

Network Indicators:

  • Unexpected file uploads to plugin endpoints
  • CSRF attack patterns in web logs

SIEM Query:

source="web_logs" AND uri="*gallery.php*" AND method="POST" AND NOT referer="*wp-admin*"

📊 Metadata

CVE ID: CVE-2024-2125
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-352
Published: April 9, 2024
Last Updated: September 30, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-2125, you might also want to check these:

CVE-2025-23922 10.0

A Cross-Site Request Forgery (CSRF) vulnerability in the Harsh iSpring Embedder WordPress plugin all...

Same vulnerability type (CWE-352)
CVE-2020-23426 9.8

CVE-2020-23426 is a privilege escalation vulnerability in zzcms 201910 that allows attackers to gain...

Same vulnerability type (CWE-352)
CVE-2024-33449 9.8

This SSRF vulnerability in PDFMyURL allows attackers to make the service send requests to internal s...

Same vulnerability type (CWE-352)