Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:40 a.m.16 views

CVE-2023-0340

The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their content. R...

8.8CVSS6.8AI score0.01047EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/03/20 3:52 p.m.8 views

CVE-2023-0340 Custom Content Shortcode <= 4.0.2 - Contributor+ LFI

The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their content. R...

8.7AI score0.01047EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/03/20 3:52 p.m.52 views

CVE-2023-0340 Custom Content Shortcode <= 4.0.2 - Contributor+ LFI

The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their content. R...

8.8AI score0.01047EPSS
Exploits1References1
CVE
CVE
added 2023/03/20 3:52 p.m.61 views

CVE-2023-0340

The CVE-2023-0340 issue affects the Custom Content Shortcode WordPress plugin (

8.8CVSS8.7AI score0.01047EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2023/03/03 12:0 a.m.21 views

WordPress Custom Content Shortcode Plugin <= 4.0.2 is vulnerable to Local File Inclusion

Software Custom Content Shortcode Type Plugin Vulnerable versions = 4.0.2 Fixed in N/A OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2023-0340 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 54e338b50ba0 Credits Erwan LR WPScan Required...

8.8CVSS7.2AI score0.01047EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder