Security Advisory

CVE-2023-4836

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-31 13:54:46

Last updated 2025-04-03 13:21:19

Assigner WPScan

State PUBLISHED

Description

The WordPress File Sharing Plugin WordPress plugin before 2.0.5 does not check authorization before displaying files and folders, allowing users to gain access to those filed by manipulating IDs which can easily be brute forced

← Browse all CVEs View on cve.org ↗