exploitDog

CVE-2023-5762

Опубликовано: 04 дек. 2023

Источник: nvd

CVSS3: 8.8

EPSS Средний

Описание

The Filr WordPress plugin before 1.2.3.6 is vulnerable from an RCE (Remote Code Execution) vulnerability, which allows the operating system to execute commands and fully compromise the server on behalf of a user with Author-level privileges.

Ссылки

https://wpscan.com/vulnerability/6ad99725-eccc-4b61-bce2-668b62619deb
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/6ad99725-eccc-4b61-bce2-668b62619deb
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:filr_project:filr:*:*:*:*:*:wordpress:*:*

Версия до 1.2.3.6 (исключая)

EPSS

Процентиль: 94%

0.14237

Средний

8.8 High

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-wpgp-69jp-wj64

CVSS3: 8.8

github

около 2 лет назад

The Filr WordPress plugin before 1.2.3.6 is vulnerable from an RCE (Remote Code Execution) vulnerability, which allows the operating system to execute commands and fully compromise the server on behalf of a user with Author-level privileges.

EPSS

Процентиль: 94%

0.14237

Средний

8.8 High

CVSS3

Дефекты

CWE-94