CVE-2023-2745 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.4 MEDIUM	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N
Wordfence	CNA	5.4 MEDIUM				CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 98%

Vendor	Product	Version
wordpress	wordpress	𝑥 < 4.1.38
wordpress	wordpress	4.2 ≤ 𝑥 < 4.2.35
wordpress	wordpress	4.3 ≤ 𝑥 < 4.3.31
wordpress	wordpress	4.4 ≤ 𝑥 < 4.4.30
wordpress	wordpress	4.5 ≤ 𝑥 < 4.5.29
wordpress	wordpress	4.6 ≤ 𝑥 < 4.6.26
wordpress	wordpress	4.7 ≤ 𝑥 < 4.7.26
wordpress	wordpress	4.8 ≤ 𝑥 < 4.8.22
wordpress	wordpress	4.9 ≤ 𝑥 < 4.9.23
wordpress	wordpress	5.0 ≤ 𝑥 < 5.0.19
wordpress	wordpress	5.1 ≤ 𝑥 < 5.1.16
wordpress	wordpress	5.2 ≤ 𝑥 < 5.2.18
wordpress	wordpress	5.3 ≤ 𝑥 < 5.3.15
wordpress	wordpress	5.4 ≤ 𝑥 < 5.4.13
wordpress	wordpress	5.5 ≤ 𝑥 < 5.5.12
wordpress	wordpress	5.6 ≤ 𝑥 < 5.6.11
wordpress	wordpress	5.7 ≤ 𝑥 < 5.7.9
wordpress	wordpress	5.8 ≤ 𝑥 < 5.8.7
wordpress	wordpress	5.9 ≤ 𝑥 < 5.9.6
wordpress	wordpress	6.0 ≤ 𝑥 < 6.0.4
wordpress	wordpress	6.1 ≤ 𝑥 < 6.1.2
wordpress	wordpress	6.2

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

wordpress

bullseye (security)	5.7.11+dfsg1-0+deb11u1 fixed
bullseye	5.7.11+dfsg1-0+deb11u1 fixed
bookworm	6.1.6+dfsg1-0+deb12u1 fixed
bookworm (security)	6.1.6+dfsg1-0+deb12u1 fixed
sid	6.6.1+dfsg1-1 fixed
trixie	6.6.1+dfsg1-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

wordpress

oracular	not-affected
noble	needs-triage
mantic	ignored
lunar	ignored
kinetic	ignored
jammy	needs-triage
focal	needs-triage
bionic	needs-triage
xenial	needs-triage
trusty	ignored

Common Weakness Enumeration

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References

http://packetstormsecurity.com/files/172426/WordPress-Core-6.2-XSS-CSRF-Directory-Traversal.html

https://core.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=55765%40%2F&new=55765%40%2F&sfp_email=&sfph_mail=

https://lists.debian.org/debian-lts-announce/2023/06/msg00024.html

https://wordpress.org/news/2023/05/wordpress-6-2-1-maintenance-security-release/

https://www.wordfence.com/threat-intel/vulnerabilities/id/edcf46b6-368e-49c0-b2c3-99bf6e2d358f?source=cve

http://packetstormsecurity.com/files/172426/WordPress-Core-6.2-XSS-CSRF-Directory-Traversal.html

https://core.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=55765%40%2F&new=55765%40%2F&sfp_email=&sfph_mail=

https://lists.debian.org/debian-lts-announce/2023/06/msg00024.html

https://wordpress.org/news/2023/05/wordpress-6-2-1-maintenance-security-release/

https://www.exploit-db.com/exploits/52274

https://www.wordfence.com/threat-intel/vulnerabilities/id/edcf46b6-368e-49c0-b2c3-99bf6e2d358f?source=cve