CVE-2024-13342 is a critical vulnerability classified under CWE-434 (Unrestricted Upload of File with Dangerous Type) affecting the Booster for WooCommerce plugin for WordPress, which provides over 100 tools including PDF invoices, abandoned cart recovery, and variation swatches. The vulnerability arises from inadequate validation of uploaded file types in the 'add_files_to_order' function, allowing unauthenticated attackers to upload arbitrary files with dangerous double extensions. This can lead to remote code execution (RCE) if the server is configured to execute the first extension in a double extension filename (e.g., 'shell.php.jpg'). The vulnerability affects all plugin versions up to and including 7.2.4. Exploitation does not require authentication or user interaction but does require a specific server configuration that executes the first extension, which is not common but possible in some environments. The vulnerability impacts the confidentiality, integrity, and availability of the affected WordPress sites by enabling attackers to execute arbitrary code, potentially leading to full site compromise, data theft, or service disruption. Although no known exploits are currently reported in the wild, the high CVSS score (8.1) reflects the significant risk posed by this vulnerability. The lack of patch links suggests that a fix may not yet be publicly available, increasing the urgency for mitigation.

The vulnerability allows unauthenticated attackers to upload arbitrary files, potentially leading to remote code execution and full compromise of affected WordPress sites. This can result in unauthorized access to sensitive customer and business data, defacement or destruction of website content, installation of backdoors or malware, and disruption of e-commerce operations. Organizations relying on Booster for WooCommerce for critical business functions such as invoicing, cart recovery, and product display are at risk of financial loss, reputational damage, and regulatory penalties due to data breaches. The impact extends to any organization using WordPress with this plugin, especially e-commerce businesses that handle payment and customer data. The requirement for specific server configurations to enable RCE limits the scope somewhat but does not eliminate the risk, as many hosting environments may inadvertently be vulnerable. The vulnerability affects confidentiality, integrity, and availability, making it a comprehensive threat to affected systems.

1. Immediately update the Booster for WooCommerce plugin to a patched version once available; monitor vendor announcements closely. 2. In the absence of an official patch, disable or restrict file upload functionality in the plugin, especially the 'add_files_to_order' feature. 3. Implement strict server-side file type validation and sanitization to reject files with dangerous or double extensions. 4. Configure web servers to not execute files based on the first extension in double extension filenames; ensure execution is based on the last extension only. 5. Employ Web Application Firewalls (WAFs) with rules to detect and block suspicious file uploads and requests targeting this vulnerability. 6. Regularly audit and monitor upload directories for unauthorized or suspicious files. 7. Harden WordPress installations by limiting plugin permissions and isolating critical directories. 8. Conduct security awareness training for administrators to recognize and respond to suspicious activity. 9. Maintain regular backups and have an incident response plan ready in case of compromise. 10. Review hosting environment configurations to ensure they do not allow execution of files with double extensions based on the first extension.