CVE-2023-0159

Name of the Vulnerable Software and Affected Versions Extensive VC Addons for WPBakery page builder WordPress plugin versions prior to 1.9.1

Description The issue is related to incorrect validation of a parameter passed to the php extract function when loading templates. This allows an unauthenticated attacker to override the template path, enabling them to read arbitrary files from the host's file system. The attack may be escalated to achieve remote code execution (RCE) using PHP filter chains. The vulnerability is associated with incorrect code generation management in the Extensive VC Addons plugin for WordPress, potentially allowing a remote attacker to disclose protected information.

Recommendations For versions prior to 1.9.1, update to version 1.9.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the template loading functionality to minimize the risk of exploitation.