mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-05 10:17:57 +00:00
805 B
805 B
CVE-2023-4300
&color=brighgreen)
Description
The Import XML and RSS Feeds WordPress plugin before 2.1.4 does not filter file extensions for uploaded files, allowing an attacker to upload a malicious PHP file, leading to Remote Code Execution.
POC
Reference
Github
No PoCs found on GitHub currently.