March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple Google Android Vulnerability
October 17, 2023Rewterz Threat Alert – New ‘EtherHiding’ Malware Campaign Targets Binance’s Smart Chain – Active IOCs
October 17, 2023Rewterz Threat Advisory – Multiple Google Android Vulnerability
October 17, 2023Rewterz Threat Alert – New ‘EtherHiding’ Malware Campaign Targets Binance’s Smart Chain – Active IOCs
October 17, 2023
Severity
High
Analysis Summary
CVE-2023-5360
WP Royal Royal Elementor Addons and Templates plugin for WordPress could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions by the handle_file_upload() function. By sending a specially-crafted HTTP request, a remote attacker could exploit this vulnerability to upload a malicious file, which could allow the attacker to execute arbitrary code on the vulnerable system.
Impact
- Gain Access
Indicators Of Compromise
CVE
- CVE-2023-5360
Affected Vendors
WordPress
Affected Products
- WP Royal Royal Elementor Addons and Templates plugin for WordPress 1.3.78
Remediation
Upgrade to the latest version of Royal Elementor Addons and Templates plugin for WordPress, available from the Royal Elementor Addons Web site.