Security Advisory

CVE-2023-5355

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-06 20:41:57
Last updated 2025-03-24 18:01:12
Assigner WPScan
State PUBLISHED

Description

The Awesome Support WordPress plugin before 6.1.5 does not sanitize file paths when deleting temporary attachment files, allowing a ticket submitter to delete arbitrary files on the server.