The Slider Revolution WordPress plugin through 6.6.12 does not check for valid image files upon import, leading to an arbitrary file upload which may be escalated to Remote Code Execution in some server configurations.
History

Thu, 12 Dec 2024 17:15:00 +0000

Type Values Removed Values Added
References
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2023-06-19T10:52:49.053Z

Updated: 2024-12-12T16:30:04.451Z

Reserved: 2023-04-27T19:06:49.720Z

Link: CVE-2023-2359

cve-icon Vulnrichment

Updated: 2024-08-02T06:19:14.931Z

cve-icon NVD

Status : Modified

Published: 2023-06-19T11:15:10.043

Modified: 2024-12-12T17:15:07.383

Link: CVE-2023-2359

cve-icon Redhat

No data.