CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-25050 – WordPress Shortcodes Ultimate plugin <= 5.12.6 - Arbitrary File Download vulnerability
https://notcve.org/view.php?id=CVE-2023-25050
10 Feb 2023 — Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Vova Anokhin Shortcodes Ultimate allows Absolute Path Traversal.This issue affects Shortcodes Ultimate: from n/a through 5.12.6. La limitación incorrecta de un nombre de ruta a una vulnerabilidad de directorio restringido ("Path Traversal") en Vova Anokhin Shortcodes Ultimate permite un path traversal absoluto. Este problema afecta a Shortcodes Ultimate: desde n/a hasta 5.12.6. The Shortcodes Ultimate plugin for ... • https://patchstack.com/database/vulnerability/shortcodes-ultimate/wordpress-shortcodes-ultimate-plugin-5-12-6-arbitrary-file-download-vulnerability?_s_id=cve • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-73: External Control of File Name or Path •