Lucene search
K

5 matches found

Patchstack
Patchstack
added 2023/12/19 12:0 a.m.11 views

WordPress Bit File Manager Plugin < 6.3 is vulnerable to Path Traversal

Software Bit File Manager Type Plugin Vulnerable versions 6.3 Fixed in 6.3 OWASP Top 10 A5: Security Misconfiguration Classification Path Traversal CVE CVE-2023-5907 Patch priority Low CVSS severity Low 5.5 Developer Claim ownership PSID f6d18601e62a Credits Dmitrii Ignatyev Required privilege...

6.5CVSS6.5AI score0.0085EPSS
Exploits2References4Affected Software1
OSV
OSV
added 2023/12/11 8:15 p.m.4 views

CVE-2023-5907

The File Manager WordPress plugin before 6.3 does not restrict the file managers root directory, allowing an administrator to set a root outside of the WordPress root directory, giving access to system files and directories even in a multisite setup, where site administrators should not be allowe...

6.5CVSS5.5AI score0.0085EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/12/11 7:22 p.m.29 views

CVE-2023-5907 File Manager < 6.3 - Admin+ Arbitrary OS File/Folder Access + Path Traversal

The File Manager WordPress plugin before 6.3 does not restrict the file managers root directory, allowing an administrator to set a root outside of the WordPress root directory, giving access to system files and directories even in a multisite setup, where site administrators should not be allowe...

6.5AI score0.0085EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/12/11 7:22 p.m.8 views

CVE-2023-5907 File Manager < 6.3 - Admin+ Arbitrary OS File/Folder Access + Path Traversal

The File Manager WordPress plugin before 6.3 does not restrict the file managers root directory, allowing an administrator to set a root outside of the WordPress root directory, giving access to system files and directories even in a multisite setup, where site administrators should not be allowe...

6.4AI score0.0085EPSS
Exploits2References1
CVE
CVE
added 2023/12/11 7:22 p.m.43 views

CVE-2023-5907

CVE-2023-5907 affects the WordPress plugin File Manager, prior to version 6.3. The root directory for the file manager is not restricted, allowing an administrator to set a root outside the WordPress root (including in multisite setups), which can grant access to system files and directories. The...

6.5CVSS6.3AI score0.0085EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder