CVE-2023-2745

2023-05-1700:00:00

ubuntu.com

166

wordpress

directory traversal

cross-site scripting

vulnerability

translation files

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

EPSS

0.004

Percentile

73.1%

JSON

WordPress Core is vulnerable to Directory Traversal in versions up to, and
including, 6.2, via the ‘wp_lang’ parameter. This allows unauthenticated
attackers to access and load arbitrary translation files. In cases where an
attacker is able to upload a crafted translation file onto the site, such
as via an upload form, this could be also used to perform a Cross-Site
Scripting attack.

Bugs

<http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036296>

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchwordpress< anyUNKNOWN
ubuntu20.04noarchwordpress< anyUNKNOWN
ubuntu22.04noarchwordpress< anyUNKNOWN
ubuntu24.04noarchwordpress< anyUNKNOWN
ubuntu16.04noarchwordpress< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	wordpress	< any	UNKNOWN
ubuntu	20.04	noarch	wordpress	< any	UNKNOWN
ubuntu	22.04	noarch	wordpress	< any	UNKNOWN
ubuntu	24.04	noarch	wordpress	< any	UNKNOWN
ubuntu	16.04	noarch	wordpress	< any	UNKNOWN