CVE-2023-4836

EUVD-2023-54677
The WordPress File Sharing Plugin WordPress plugin before 2.0.5 does not check authorization before displaying files and folders, allowing users to gain access to those filed by manipulating IDs which can easily be brute forced
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CISA-ADPADP
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
Affected Products (NVD)
VendorProductVersion
userprivatefileswordpress_file_sharing_plugin
𝑥
< 2.0.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://research.cleantalk.org/cve-2023-4836-user-private-files-idor-to-sensitive-data-and-private-files-exposure-leak-of-info-poc
https://wpscan.com/vulnerability/c17f2534-d791-4fe3-b45b-875777585dc6
https://research.cleantalk.org/cve-2023-4836-user-private-files-idor-to-sensitive-data-and-private-files-exposure-leak-of-info-poc
https://wpscan.com/vulnerability/c17f2534-d791-4fe3-b45b-875777585dc6
https://wpscan.com/vulnerability/c17f2534-d791-4fe3-b45b-875777585dc6