CVE-2023-3452

Name of the Vulnerable Software and Affected Versions Canto plugin for WordPress versions up to, and including, 3.0.4

Description The Canto plugin for WordPress is vulnerable to Remote File Inclusion via the wp abspath parameter. This allows unauthenticated attackers to include and execute arbitrary remote code on the server, provided that allow url include is enabled. Local File Inclusion is also possible, albeit less useful because it requires that the attacker be able to upload a malicious php file via FTP or some other means into a directory readable by the web server.

Recommendations For versions up to, and including, 3.0.4, update to version 3.0.5 to secure your site. As a temporary workaround, consider restricting access to the wp abspath parameter to minimize the risk of exploitation. Additionally, ensure that allow url include is disabled to prevent remote code execution.