WPScanCVE-2023-5886CVE-2023-5886
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
44.2%
The Export any WordPress data to XML/CSV WordPress plugin before 1.4.0, WP All Export Pro WordPress plugin before 1.8.6 does not check nonce tokens early enough in the request lifecycle, allowing attackers with the ability to upload files to make logged in users perform unwanted actions leading to PHAR deserialization, which may lead to remote code execution.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| soflyy | export_any_wordpress_data_to_xml\/csv | * | cpe:2.3:a:soflyy:export_any_wordpress_data_to_xml\/csv:*:*:*:*:*:wordpress:*:* |
| soflyy | wp_all_export | * | cpe:2.3:a:soflyy:wp_all_export:*:*:*:*:pro:wordpress:*:* |
CNA Affected
[
{
"vendor": "Unknown",
"product": "Export any WordPress data to XML/CSV",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "1.4.0"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
},
{
"vendor": "Unknown",
"product": "WP All Export Pro",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "1.8.6"
}
],
"defaultStatus": "unaffected"
}
]Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
44.2%