CVE-2024-35745 – This path traversal vulnerability in the Strate... (How to Fix)

Q: What is the severity of CVE-2024-35745?

CVE-2024-35745 has a CVSS score of 7.5 (HIGH). This path traversal vulnerability in the Strategery Migrations WordPress plugin allows attackers to delete arbitrary files on the server. It affects all WordPress sites using the plugin version 1.0 or earlier. Attackers can exploit this to delete critical system files or website content.

📋 TL;DR

This path traversal vulnerability in the Strategery Migrations WordPress plugin allows attackers to delete arbitrary files on the server. It affects all WordPress sites using the plugin version 1.0 or earlier. Attackers can exploit this to delete critical system files or website content.

💻 Affected Systems

Products:

WordPress Strategery Migrations Plugin

Versions: All versions up to and including 1.0

Operating Systems: Any OS running WordPress

Default Config Vulnerable: ⚠️ Yes

Notes: Affects WordPress installations with the vulnerable plugin version installed and activated.

📦 What is this software?

Strategery Migrations by Strategery Migrations Project

View all CVEs affecting Strategery Migrations →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete website compromise through deletion of WordPress core files, leading to site unavailability and potential data loss.

🟠

Likely Case

Selective file deletion causing website functionality disruption, content loss, or defacement.

🟢

If Mitigated

Limited impact with proper file permissions and web server restrictions preventing deletion of critical system files.

🌐 Internet-Facing: HIGH - WordPress sites are typically internet-facing, making them directly accessible to attackers.

🏢 Internal Only: LOW - This primarily affects public WordPress installations, not internal-only systems.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires authenticated access to WordPress, but the vulnerability is simple to exploit once authenticated.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.0.1

Vendor Advisory: https://patchstack.com/database/vulnerability/strategery-migrations/wordpress-strategery-migrations-plugin-1-0-arbitrary-file-deletion-vulnerability

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Go to Plugins → Installed Plugins. 3. Find 'Strategery Migrations' and click 'Update Now'. 4. If update not available, download version 1.0.1 from WordPress repository and manually update.

🔧 Temporary Workarounds

Disable Plugin

all

Temporarily deactivate the vulnerable plugin until patched

wp plugin deactivate strategery-migrations

Restrict File Permissions

linux

Set restrictive permissions on critical WordPress directories

chmod 755 wp-content
chmod 644 wp-config.php

🧯 If You Can't Patch

Remove the plugin entirely if not essential for site functionality
Implement web application firewall rules to block path traversal patterns

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin → Plugins → Installed Plugins for 'Strategery Migrations' version 1.0 or earlier

Check Version:

wp plugin get strategery-migrations --field=version

Verify Fix Applied:

Verify plugin version shows 1.0.1 or higher in WordPress admin panel

📡 Detection & Monitoring

Log Indicators:

Unusual file deletion attempts in web server logs
POST requests to plugin endpoints with '../' patterns

Network Indicators:

HTTP requests containing path traversal sequences to plugin-specific endpoints

SIEM Query:

web.url:*strategery-migrations* AND web.url:*../*

📊 Metadata

CVE ID: CVE-2024-35745

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-22

Published: June 10, 2024

Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-35745, you might also want to check these: