cb
cvebase
.
~
/
products
/
themeisle
/
otter
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
themeisle
/
Themeisle Otter
Themeisle Otter vulnerabilities
1 known vulnerability affecting
themeisle/otter
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2023-2288
P2
HIGH
CVSS 8.8
fixed in 2.2.6
2023-05-30
CVE-2023-2288 [HIGH] CWE-502 CVE-2023-2288: The Otter WordPress plugin before 2.2.6 does not sanitize some user-controlled file paths before per The Otter WordPress plugin before 2.2.6 does not sanitize some user-controlled file paths before performing file operations on them. This leads to a PHAR deserialization vulnerability on PHP < 8.0 using the phar:// stream wrapper.
nvd
Themeisle Otter vulnerabilities | cvebase