CVE-2023-2249
Gravedad CVSS v3.1:
ALTA
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
09/06/2023
Última modificación:
08/04/2026
Descripción
*** Pendiente de traducción *** The wpForo Forum plugin for WordPress is vulnerable to Local File Include, Server-Side Request Forgery, and PHAR Deserialization in versions up to, and including, 2.1.7. This is due to the insecure use of file_get_contents without appropriate verification of the data being supplied to the function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to retrieve the contents of files like wp-config.php hosted on the system, perform a deserialization attack and possibly achieve remote code execution, and make requests to internal services.
Impacto
Puntuación base 3.x
8.80
Gravedad 3.x
ALTA
Productos y versiones vulnerables
| CPE | Desde | Hasta |
|---|---|---|
| cpe:2.3:a:gvectors:wpforo_forum:*:*:*:*:*:wordpress:*:* | 2.1.7 (incluyendo) |
Para consultar la lista completa de nombres de CPE con productos y versiones, ver esta página
Referencias a soluciones, herramientas e información
- https://plugins.trac.wordpress.org/browser/wpforo/tags/2.1.7/classes/Actions.php#L444
- https://plugins.trac.wordpress.org/browser/wpforo/tags/2.1.8/classes/Actions.php#L437
- https://www.wordfence.com/threat-intel/vulnerabilities/id/800fa098-b29f-4979-b7bd-b1186a4dafcb?source=cve
- https://plugins.trac.wordpress.org/browser/wpforo/tags/2.1.7/classes/Actions.php#L444
- https://plugins.trac.wordpress.org/browser/wpforo/tags/2.1.8/classes/Actions.php#L437
- https://www.wordfence.com/threat-intel/vulnerabilities/id/800fa098-b29f-4979-b7bd-b1186a4dafcb?source=cve