WordPress Plugin Vulnerabilities

WPB Show Core <= 2.2 - Unauthenticated Local File Inclusion

Description

This plugin is vulnerable to a local file inclusion via the `path` parameter.

Proof of Concept

Affects Plugins

Plugin icon
wpb-show-core
No known fix

References

CVE
CVE-2023-4922

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22
CVSS
8.6 (high)

Miscellaneous

Original Researcher
Mohamed Abdelhady
Submitter
Mohamed Abdelhady
Submitter website
https://mohamedabdelhady933.github.io/Blog/
Submitter twitter
Mohamed_A_R_1
Verified
Yes
WPVDB ID
968d87c0-af60-45ea-b34e-8551313cc8df

Timeline

Publicly Published
2023-11-06 (about 2 years ago)
Added
2023-11-06 (about 2 years ago)
Last Updated
2023-11-06 (about 2 years ago)

Other

Published
Title
Published
2023-09-12
Title
Dropbox Folder Share <= 1.9.7 - Unauthenticated Remote Code Execution via LFI
Published
2024-06-28
Title
Newspack Blocks < 3.0.9 - Authenticated (Contributor+) Arbitrary Directory Deletion
Published
2023-12-26
Title
Ultimate Addons for Beaver Builder < 1.35.14 - Contributor+ Arbitrary File Download
Published
2024-06-27
Title
Filter & Grids < 2.8.33 - Unauthenticated LFI
Published
2024-11-08
Title
WooCommerce Support Ticket System < 17.8 - Authenticated (Subscriber+) Arbitrary File Deletion