The File Manager Advanced Shortcode WordPress plugin through 2.3.2 does not adequately prevent uploading files with disallowed MIME types when using the shortcode. This leads to RCE in cases where the allowed MIME type list does not include PHP files. In the worst case, this is available to unauthenticated users.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/173735/WordPress-File-Manager-Advanced-Shortcode-2.3.2-Remote-Code-Execution.html | Exploit Third Party Advisory VDB Entry |
https://wpscan.com/vulnerability/58f72953-56d2-4d86-a49b-311b5fc58056 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2023-06-27T13:17:19.200Z
Updated: 2023-06-27T13:17:19.200Z
Reserved: 2023-04-14T14:53:15.771Z
Link: CVE-2023-2068
JSON object: View
NVD Information
Status : Modified
Published: 2023-06-27T14:15:10.477
Modified: 2023-11-07T04:11:51.603
Link: CVE-2023-2068
JSON object: View
Redhat Information
No data.
CWE
No CWE.