CVE-2023-0340 — Path Traversal in Content Shortcode Project Custom Content Shortcode

CWE-22 — Path Traversal3 documents3 sources

Severity

8.8HIGHNVD

EPSS

1.2%

top 20.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Custom Content Shortcode Project Custom Content Shortcode

Timeline

PublishedMar 20

Description

The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their content. RCE could also be achieved if the attacker manage to upload a malicious image containing PHP code, and then include it via the affected attribute, on a default WP install, authors could easily achieve tha…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

▶NVDcustom_content_shortcode_project/custom_content_shortcode4.0.2

🔴Vulnerability Details

CVEList

Custom Content Shortcode <= 4.0.2 - Contributor+ LFI↗2023-03-20

▶

GHSA

GHSA-q9rp-c9pw-fg3v: The Custom Content Shortcode WordPress plugin through 4↗2023-03-20

▶