8
CVE-2023-5527
- EPSS 0.53%
- Veröffentlicht 18.06.2024 06:15:10
- Zuletzt bearbeitet 21.11.2024 08:41:56
- Quelle security@wordfence.com
- CVE-Watchlists
- Unerledigt
LoginBusiness Directory Plugin <= 6.4.3 - Authenticated (Author+) CSV Injection
The Business Directory Plugin plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 6.4.3 via the class-csv-exporter.php file. This allows authenticated attackers, with author-level permissions and above, to embed untrusted input into CSV files exported by administrators, which can result in code execution when these files are downloaded and opened on a local system with a vulnerable configuration.
Mögliche Gegenmaßnahme
Business Directory Plugin – Easy Listing Directories for WordPress: Update to version 6.4.4, or a newer patched version
Weitere Schwachstelleninformationen
SystemWordPress Plugin
≫
Produkt
Business Directory Plugin – Easy Listing Directories for WordPress
Version
*-6.4.3
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Businessdirectoryplugin ≫ Business Directory SwPlatformwordpress Version < 6.4.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.53% | 0.662 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8 | 2.1 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
|
| security@wordfence.com | 7.4 | 3.1 | 3.7 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
|
CWE-1236 Improper Neutralization of Formula Elements in a CSV File
The product saves user-provided information into a Comma-Separated Value (CSV) file, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as a command when the file is opened by a spreadsheet product.