Security Advisory

CVE-2023-4238

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-25 15:56:52

Last updated 2025-04-22 20:03:49

Assigner WPScan

State PUBLISHED

Description

The Prevent files / folders access WordPress plugin before 2.5.2 does not validate files to be uploaded, which could allow attackers to upload arbitrary files such as PHP on the server.

← Browse all CVEs View on cve.org ↗