CVE-2023-5199

CVSS v3.1

9.9

Critical

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions PHP to Page plugin for WordPress versions up to, and including, 0.3

Description The issue allows authenticated attackers with subscriber-level permissions or above to include local files and potentially execute code on the server via the 'php-to-page' shortcode. This can be achieved by poisoning log files or getting a file installed for subscribers, while author and above users can upload files by default and easily achieve remote code execution.

Recommendations For versions up to, and including, 0.3, consider disabling the 'php-to-page' shortcode until a patch is available to prevent potential remote code execution. Restrict access to file uploads for users with subscriber-level permissions or above to minimize the risk of exploitation.

Exploit

Fix

RCE

Files Accessible to External Parties

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-98CWE-552

Related Identifiers

CVE-2023-5199

Affected Products

Php To Page

CVE-2023-5199

Weakness Enumeration

Related Identifiers

Affected Products

References · 7