CVE-2023-5939

State: PUBLISHED · Published: 2023-12-26 · Updated: 2024-08-02 · Assigner: WPScan

Description

The rtMedia for WordPress, BuddyPress and bbPress WordPress plugin before 4.6.16 loads the contents of the import file in an unsafe manner, leading to remote code execution by privileged users.

CWE

(none)

Affected

Unknown / rtMedia for WordPress, BuddyPress and bbPress — v=0 <4.6.16 [affected]

CVSS

(none)

References

https://wpscan.com/vulnerability/db5d41fc-bcd3-414f-aa99-54d5537007bc exploit, vdb-entry, technical-description

Source

cvelistV5-main/cves/2023/5xxx/CVE-2023-5939.json