Lucene search
K

6 matches found

Circl
Circl
added 2023/09/04 4:16 p.m.4 views

CVE-2023-4019

creationtimestamp| type| source ---|---|--- 2023-09-04 16:16:39+00:00| seen| https://t.me/cibsecurity/69792...

8.8CVSS8.6AI score0.00654EPSS
Exploits2References1
NVD
NVD
added 2023/09/04 12:15 p.m.19 views

CVE-2023-4019

The Media from FTP WordPress plugin before 11.17 does not properly limit who can use the plugin, which may allow users with author+ privileges to move files around, like wp-config.php, which may lead to RCE in some cases...

8.8CVSS8.6AI score0.00654EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/09/04 11:27 a.m.26 views

CVE-2023-4019 Media from FTP < 11.17 - Author+ Arbitrary File Access

The Media from FTP WordPress plugin before 11.17 does not properly limit who can use the plugin, which may allow users with author+ privileges to move files around, like wp-config.php, which may lead to RCE in some cases...

8.8AI score0.00654EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/09/04 11:27 a.m.5 views

CVE-2023-4019 Media from FTP < 11.17 - Author+ Arbitrary File Access

The Media from FTP WordPress plugin before 11.17 does not properly limit who can use the plugin, which may allow users with author+ privileges to move files around, like wp-config.php, which may lead to RCE in some cases...

6.6AI score0.00654EPSS
Exploits2References1
CVE
CVE
added 2023/09/04 11:27 a.m.50 views

CVE-2023-4019

CVE-2023-4019 affects the WordPress plugin Media from FTP, prior to version 11.17. Root cause is improper access control, allowing users with author+ privileges to move sensitive files (e.g., wp-config.php), which may lead to remote code execution in some cases. The issue is fixed in 11.17; upgra...

8.8CVSS8.6AI score0.00654EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2023/08/17 12:0 a.m.14 views

WordPress Media from FTP Plugin < 11.17 is vulnerable to Settings Change

Software Media from FTP Type Plugin Vulnerable versions 11.17 Fixed in 11.17 OWASP Top 10 A6: Security Misconfiguration Classification Settings Change CVE CVE-2023-4019 Patch priority Low CVSS severity Low 3.8 Developer Claim ownership PSID 12e9a53fc39c Credits Dmitrii Ignatyev Required privilege...

8.8CVSS6.5AI score0.00654EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder