CVE-2023-5311

moderate-risk
Published 2023-10-25

The WP EXtra plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the register() function in versions up to, and including, 6.2. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to modify the contents of the .htaccess files located in a site's root directory or /wp-content and /wp-includes folders and achieve remote code execution. CVE-2023-46623 appears to be a duplicate of this issue.

Do I need to act?

~
6.8% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (1)

Wp Extra

Affected Vendors

Wpvnteam

References (6)

Exploit https://giongfnef.gitbook.io/giongfnef/cve/cve-2023-5311
Patch https://plugins.trac.wordpress.org/changeset/2977703/wp-extra
Patch https://www.wordfence.com/threat-intel/vulnerabilities/id/87e3dd5e-0d77-4d78-817...
Exploit https://giongfnef.gitbook.io/giongfnef/cve/cve-2023-5311
Patch https://plugins.trac.wordpress.org/changeset/2977703/wp-extra
Patch https://www.wordfence.com/threat-intel/vulnerabilities/id/87e3dd5e-0d77-4d78-817...
44
/ 100
moderate-risk
Severity 30/34 · Critical
Exploitability 9/34 · Low
Exposure 5/34 · Minimal