Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2023-5815
HistoryNov 22, 2023 - 4:15 p.m.

CVE-2023-5815

2023-11-2216:15:14
[email protected]
web.nvd.nist.gov
95
news & blog designer pack
wordpress
plugin
remote code execution
local file inclusion
vulnerability
cve-2023-5815
security

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.9%

JSON

The News & Blog Designer Pack – WordPress Blog Plugin — (Blog Post Grid, Blog Post Slider, Blog Post Carousel, Blog Post Ticker, Blog Post Masonry) plugin for WordPress is vulnerable to Remote Code Execution via Local File Inclusion in all versions up to, and including, 3.4.1 via the bdp_get_more_post function hooked via a nopriv AJAX. This is due to function utilizing an unsafe extract() method to extract values from the POST variable and passing that input to the include() function. This makes it possible for unauthenticated attackers to include arbitrary PHP files and achieve remote code execution. On vulnerable Docker configurations it may be possible for an attacker to create a PHP file and then subsequently include it to achieve RCE.

Affected configurations

Vulners
NVD
Node
infornwebnews_\&_blog_designer_packRange3.4.1
VendorProductVersionCPE
infornwebnews_\&_blog_designer_pack*cpe:2.3:a:infornweb:news_\&_blog_designer_pack:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "vendor": "infornweb",
    "product": "News & Blog Designer Pack – WordPress Blog Plugin — (Blog Post Grid, Blog Post Slider, Blog Post Carousel, Blog Post Ticker, Blog Post Masonry)",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "3.4.1",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Related

wpvulndb 1
cvelist 1
githubexploit 1
prion 1
nvd 1
wordfence 1
wpvulndb
wpvulndb
News & Blog Designer Pack – WordPress Blog Plugin < 3.4.2 - Unauthenticated Remote Code Execution via Local File Inclusion
2023-11-23 00:00:00
cvelist
cvelist
CVE-2023-5815
2023-11-22 15:33:22
githubexploit
githubexploit
Exploit for CVE-2023-5815
2023-10-26 22:50:26
prion
prion
Remote code execution
2023-11-22 16:15:00
nvd
nvd
CVE-2023-5815
2023-11-22 16:15:14
wordfence
wordfence
Wordfence Intelligence Weekly WordPress Vulnerability Report (October 23, 2023 to October 29, 2023)
2023-11-02 18:40:49

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.9%

JSON
Related for CVE-2023-5815
wpvulndb1cvelist1githubexploit1prion1nvd1wordfence1