CVE-2023-2745
Severity CVSS v4.0:
Pending analysis
Type:
CWE-22
Path Traversal
Publication date:
17/05/2023
Last modified:
24/04/2025
Description
WordPress Core is vulnerable to Directory Traversal in versions up to, and including, 6.2, via the ‘wp_lang’ parameter. This allows unauthenticated attackers to access and load arbitrary translation files. In cases where an attacker is able to upload a crafted translation file onto the site, such as via an upload form, this could be also used to perform a Cross-Site Scripting attack.
Impact
Base Score 3.x
5.40
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.1.38 (excluding) | |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.2 (including) | 4.2.35 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.3 (including) | 4.3.31 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.4 (including) | 4.4.30 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.5 (including) | 4.5.29 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.6 (including) | 4.6.26 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.7 (including) | 4.7.26 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.8 (including) | 4.8.22 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 4.9 (including) | 4.9.23 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 5.0 (including) | 5.0.19 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 5.1 (including) | 5.1.16 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 5.2 (including) | 5.2.18 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 5.3 (including) | 5.3.15 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 5.4 (including) | 5.4.13 (excluding) |
| cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* | 5.5 (including) | 5.5.12 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://packetstormsecurity.com/files/172426/WordPress-Core-6.2-XSS-CSRF-Directory-Traversal.html
- https://core.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=55765%40/&new=55765%40/
- https://lists.debian.org/debian-lts-announce/2023/06/msg00024.html
- https://wordpress.org/news/2023/05/wordpress-6-2-1-maintenance-security-release/
- https://www.wordfence.com/threat-intel/vulnerabilities/id/edcf46b6-368e-49c0-b2c3-99bf6e2d358f?source=cve
- http://packetstormsecurity.com/files/172426/WordPress-Core-6.2-XSS-CSRF-Directory-Traversal.html
- https://core.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=55765%40/&new=55765%40/
- https://lists.debian.org/debian-lts-announce/2023/06/msg00024.html
- https://wordpress.org/news/2023/05/wordpress-6-2-1-maintenance-security-release/
- https://www.exploit-db.com/exploits/52274
- https://www.wordfence.com/threat-intel/vulnerabilities/id/edcf46b6-368e-49c0-b2c3-99bf6e2d358f?source=cve