The HTML filter and csv-file search plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2.7 via the 'src' attribute of the 'csvsearch' shortcode. This allows authenticated attackers, with contributor-level permissions and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included.
References
Link | Resource |
---|---|
https://plugins.trac.wordpress.org/changeset/2985200/hk-filter-and-search | Patch |
https://www.wordfence.com/threat-intel/vulnerabilities/id/ee2b4055-8cbd-49b7-bb0b-eddef85060fc?source=cve | Patch Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
13 Nov 2023, 15:25
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-552 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CPE | cpe:2.3:a:jonashjalmarsson:html_filter_and_csv-file_search:*:*:*:*:*:wordpress:*:* | |
First Time |
Jonashjalmarsson html Filter And Csv-file Search
Jonashjalmarsson |
|
References | (MISC) https://www.wordfence.com/threat-intel/vulnerabilities/id/ee2b4055-8cbd-49b7-bb0b-eddef85060fc?source=cve - Patch, Third Party Advisory | |
References | (MISC) https://plugins.trac.wordpress.org/changeset/2985200/hk-filter-and-search - Patch |
07 Nov 2023, 04:23
Type | Values Removed | Values Added |
---|---|---|
CWE |
31 Oct 2023, 12:58
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-31 12:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-5099
Mitre link : CVE-2023-5099
CVE.ORG link : CVE-2023-5099
JSON object : View
Products Affected
jonashjalmarsson
- html_filter_and_csv-file_search
CWE
CWE-552
Files or Directories Accessible to External Parties