PT-2023-32395 · WordPress · Export Any Wordpress Data To Xml/Csv+1

Alex Sanford

Published

2023-12-18

Updated

2023-12-21

CVE-2023-5886

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Export any WordPress data to XML/CSV WordPress plugin versions prior to 1.4.0 WP All Export Pro WordPress plugin versions prior to 1.8.6

Description The issue arises from the failure to check nonce tokens early enough in the request lifecycle, allowing attackers with file upload capabilities to make logged-in users perform unwanted actions. This can lead to PHAR deserialization, potentially resulting in remote code execution.

Recommendations For Export any WordPress data to XML/CSV WordPress plugin versions prior to 1.4.0, update to version 1.4.0 or later. For WP All Export Pro WordPress plugin versions prior to 1.8.6, update to version 1.8.6 or later.

Exploit

Fix

RCE

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2023-5886

Affected Products

Export Any Wordpress Data To Xml/Csv

Wp All Export Pro

PT-2023-32395 · WordPress · Export Any Wordpress Data To Xml/Csv+1

CVE-2023-5886

Weakness Enumeration

Related Identifiers

Affected Products

References · 5