CVE-2024-13622 identifies a sensitive information exposure vulnerability (CWE-200) in the imagisol File Uploads Addon for WooCommerce plugin for WordPress, affecting all versions up to and including 1.7.1. The vulnerability arises because the plugin stores uploaded files in the /wp-content/uploads directory without adequate access controls, allowing unauthenticated remote attackers to retrieve these files directly via HTTP requests. Since the uploads directory can contain sensitive customer data such as personal documents or confidential attachments, unauthorized access leads to a breach of confidentiality. The vulnerability does not require any authentication or user interaction, making it trivially exploitable by attackers scanning for exposed files. The CVSS 3.1 base score is 7.5 (high), reflecting network attack vector (AV:N), low attack complexity (AC:L), no privileges required (PR:N), no user interaction (UI:N), and high confidentiality impact (C:H) with no impact on integrity or availability. No patches or fixes have been linked yet, and no known exploits are reported in the wild, but the exposure of sensitive customer data poses a significant risk to organizations using this plugin. The vulnerability is particularly critical for e-commerce sites relying on WooCommerce with this addon, as it undermines customer trust and regulatory compliance related to data protection.

The primary impact of CVE-2024-13622 is the unauthorized disclosure of sensitive customer information stored in uploaded files. This can lead to privacy violations, regulatory non-compliance (e.g., GDPR, CCPA), reputational damage, and potential legal liabilities for affected organizations. Attackers can harvest personal data, financial documents, or proprietary information, which may be used for identity theft, fraud, or further targeted attacks. Since the vulnerability requires no authentication and can be exploited remotely, the attack surface is broad, affecting any WooCommerce site using the vulnerable plugin version. The exposure undermines customer trust and can result in loss of business. Although integrity and availability are not impacted, the confidentiality breach alone is significant. Organizations operating in sectors with sensitive customer data, such as retail, healthcare, or finance, face heightened risks. The lack of known exploits in the wild provides a window for proactive mitigation, but the ease of exploitation demands urgent attention.

1. Immediately restrict direct public access to the /wp-content/uploads directory by implementing web server access controls such as .htaccess rules for Apache or equivalent configurations for Nginx to deny or limit access to uploaded files. 2. Use authentication and authorization mechanisms to control access to uploaded files, ensuring only authorized users can retrieve sensitive attachments. 3. Monitor and audit the uploads directory regularly for unauthorized access attempts and unusual file retrieval patterns. 4. If possible, move sensitive uploads outside the web root or use a secure storage service with controlled access. 5. Keep the plugin updated and monitor the vendor’s announcements for patches or security updates addressing this vulnerability. 6. Employ Web Application Firewalls (WAFs) to detect and block suspicious requests targeting the uploads directory. 7. Educate site administrators on secure file upload handling and the risks of exposing upload directories. 8. Consider implementing file encryption for sensitive uploads to add an additional layer of protection. 9. Review and enforce least privilege principles for file permissions on the server to minimize exposure. 10. Conduct a thorough security assessment of the WooCommerce environment to identify and remediate any other potential misconfigurations.