The WP Simple Galleries plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.34 via deserialization of untrusted input from the 'wpsimplegallery_gallery' post meta via 'wpsgallery' shortcode. This allows authenticated attackers, with contributor-level permissions and above, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.
References
Configurations
History
13 Nov 2023, 14:48
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:maca134:wp_simple_galleries:*:*:*:*:*:wordpress:*:* | |
CWE | NVD-CWE-Other | |
First Time |
Maca134 wp Simple Galleries
Maca134 |
|
References | (MISC) https://plugins.trac.wordpress.org/browser/wp-simple-galleries/tags/1.34/wp-simple-gallery.php#L250 - Exploit | |
References | (MISC) https://www.wordfence.com/threat-intel/vulnerabilities/id/0dc8f7cf-d8be-4229-b823-3bd9bc9f6eda?source=cve - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
07 Nov 2023, 04:24
Type | Values Removed | Values Added |
---|---|---|
CWE |
30 Oct 2023, 14:32
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-30 14:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-5583
Mitre link : CVE-2023-5583
CVE.ORG link : CVE-2023-5583
JSON object : View
Products Affected
maca134
- wp_simple_galleries
CWE