← Back to context

Comment by cmg

3 hours ago

My mind immediately went to chaining this with another recent vulnerability in the Ninja Forms - File Upload plugin [0]

> This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

So, upload and execute a script that loads Copy Fail and even if you're only executing as www-data or another restricted user that "can't" sudo -- suddenly, uid=0!

To repeat the refrain... I'm so tired.

[0] https://www.wordfence.com/blog/2026/04/attackers-actively-ex...

0 comments

cmg

Reply