CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-4297

The Mmm Simple File List WordPress plugin through 2.3 does not validate the generated path to list files from, allowing any authenticated users, such as subscribers, to list the content of arbitrary directories.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.0%

CVSS Severity

CVSS v3 Score 4.3

References

https://wpscan.com/vulnerability/9ff85b06-819c-459e-90a9-6151bfd70978
https://wpscan.com/vulnerability/9ff85b06-819c-459e-90a9-6151bfd70978

Products affected by CVE-2023-4297

Mediamanifesto » Mmm Simple File List » Version: 2.3

cpe:2.3:a:mediamanifesto:mmm_simple_file_list:2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4297

Products

Pricing

Contact Us