WordPress Plugin Vulnerabilities

FULL - Customer < 2.3 - Subscriber+ Arbitrary Plugin Installation

Description

The plugin does not have proper authorisation in its install-plugin REST API, allowing any authenticated users, such as subscriber to install plugins from arbitrary sources

Affects Plugins

Plugin icon
full-customer
Fixed in 2.3

References

CVE
CVE-2023-4243

Classification

Type
RCE
OWASP top 10
A1: Injection
CWE
CWE-94
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Ramuel Gall
Verified
No
WPVDB ID
c852a0cd-9575-459c-9980-e1b643faf490

Timeline

Publicly Published
2023-08-08 (about 2 years ago)
Added
2023-08-09 (about 2 years ago)
Last Updated
2023-08-18 (about 2 years ago)

Other

Published
Title
Published
2020-03-25
Title
Product Lister for Walmart <= 1.0.0 - Unauthenticated RCE via Outdated PHPUnit
Published
2025-08-18
Title
Cloudflare Image Resizing < 1.5.7 - Missing Authentication to Unauthenticated Remote Code Execution via rest_pre_dispatch Hook
Published
2025-05-07
Title
Wolmart | Multi-Vendor Marketplace WooCommerce Theme < 1.8.12 - Unauthenticated Arbitrary Shortcode Execution in wolmart_loadmore
Published
2022-10-14
Title
WP All Import < 3.6.9 - Admin+ Arbitrary File Upload to RCE
Published
2014-05-11
Title
Formidable Forms Pro < 1.06.03 - Arbitrary File Upload via ofc_upload_image.php