CVE-2023-0156

Published: Apr 10, 2023Modified: Feb 11, 2025

4.9

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.2 / Impact: 3.6

Source: NVD

Description

The All-In-One Security (AIOS) WordPress plugin before 5.1.5 does not limit what log files to display in it's settings pages, allowing an authorized user (admin+) to view the contents of arbitrary files and list directories anywhere on the server (to which the web server has access). The plugin only displays the last 50 lines of the file.

Affected (1)

Products: Updraftplus: All In One Security

1 product

All In One Security

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Updraftplus All In One Security	Before 5.1.5

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (2)

https://wpscan.com/vulnerability/caf1dbb5-197e-41e9-8f48-ba1f2360a759

Source: contact@wpscan.com

ExploitThird Party Advisory

https://wpscan.com/vulnerability/caf1dbb5-197e-41e9-8f48-ba1f2360a759

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.