3 matches found
CVE-2023-4488 Dropbox Folder Share <= 1.9.7 - Unauthenticated Local File Inclusion
The Dropbox Folder Share for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 1.9.7 via the editor-view.php file. This allows unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. Thi...
CVE-2023-4488
CVE-2023-4488 refers to the Dropbox Folder Share for WordPress. Connected sources confirm an unauthenticated Local File Inclusion (LFI) via editor-view.php affecting versions up to and including 1.9.7, enabling attackers to include/execute arbitrary PHP files on the server. Impact statements indi...
WordPress Dropbox Folder Share Plugin <= 1.9.7 is vulnerable to Local File Inclusion
Software Dropbox Folder Share Type Plugin Vulnerable versions = 1.9.7 Fixed in N/A OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2023-4488 Patch priority Low CVSS severity Low 9.8 Developer Claim ownership PSID 097b8d11ce41 Credits Marco Wotschka Required privilege...