CVE-2023-4724
WP All Export (Free < 1.4.0, Pro < 1.8.6) - Admin+ RCE
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
The Export any WordPress data to XML/CSV WordPress plugin before 1.4.0, WP All Export Pro WordPress plugin before 1.8.6 does not validate and sanitise the `wp_query` parameter which allows an attacker to run arbitrary command on the remote server
Los complementos Export any WordPress data to XML/CSV de WordPress anterior a 1.4.0 y el complemento WP All Export Pro de WordPress anterior a 1.8.6 no validan ni sanitizan el parĂ¡metro `wp_query` que permite a un atacante ejecutar comandos arbitrarios en el servidor remoto
The Export any WordPress data to XML/CSV plugin for WordPress is vulnerable to Remote Code Execution in versions up to 1.4.1, and in versions up to 1.8.6 in the PRO version via the 'wp_query' parameter. This makes it possible for authenticated attackers, with administrator-level access and above, to execute code on the server.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-09-01 CVE Reserved
- 2023-11-24 CVE Published
- 2023-12-22 EPSS Updated
- 2024-08-02 CVE Updated
- 2024-08-02 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|---|---|
https://wpscan.com/vulnerability/48820f1d-45cb-4f1f-990d-d132bfc5536f | 2024-08-02 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Soflyy Search vendor "Soflyy" | Export Any Wordpress Data To Xml\/csv Search vendor "Soflyy" for product "Export Any Wordpress Data To Xml\/csv" | < 1.4.0 Search vendor "Soflyy" for product "Export Any Wordpress Data To Xml\/csv" and version " < 1.4.0" | wordpress |
Affected
| ||||||
Soflyy Search vendor "Soflyy" | Wp All Export Search vendor "Soflyy" for product "Wp All Export" | < 1.8.6 Search vendor "Soflyy" for product "Wp All Export" and version " < 1.8.6" | pro, wordpress |
Affected
|