CVE-2023-1273
- Reference to the description:
- Description:
- The ND Shortcodes WordPress plugin before 7.0 does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users such as subscriber to perform LFI attacks
- Last updated date:
- 07/11/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 07/11/2023
- Reference url to background
https://wpscan.com/vulnerability/0805ed7e-395d-48de-b484-6c3ec1cd4b8e
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 09/12/2023
- Reference url to background