CVE-2023-4724 WP All Export (Free < 1.4.0, Pro < 1.8.6) - Admin+ RCE

2023-12-1820:08:04

WPScan

www.cve.org

cve-2023-4724

wp all export

remote command execution

wordpress plugin

data export

EPSS

0.001

Percentile

19.3%

JSON

The Export any WordPress data to XML/CSV WordPress plugin before 1.4.0, WP All Export Pro WordPress plugin before 1.8.6 does not validate and sanitise the wp_query parameter which allows an attacker to run arbitrary command on the remote server

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "Export any WordPress data to XML/CSV",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "1.4.0"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  },
  {
    "vendor": "Unknown",
    "product": "WP All Export Pro",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "1.8.6"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

wpscan.com/vulnerability/48820f1d-45cb-4f1f-990d-d132bfc5536f

EPSS

0.001

Percentile

19.3%

JSON

Related for CVELIST:CVE-2023-4724