How severe is CVE-2023-37888?

CVE-2023-37888 has a CVSS v3 score of 7.6 (HIGH).

CVE-2023-37888

Name: shortcodes_and_extra_features_for_phlox_theme
Author: averta

7.6HIGH

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in By Averta Shortcodes and extra features for Phlox theme allows PHP Local File Inclusion.This issue affec

Publicado: 5/17/2024Actualizado: 5/29/2025

Descripción

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in By Averta Shortcodes and extra features for Phlox theme allows PHP Local File Inclusion.This issue affects Shortcodes and extra features for Phlox theme: from n/a through 2.14.0.

Análisis IAImpulsado por IA

Productos Afectados

avertashortcodes_and_extra_features_for_phlox_theme

Referencias

https://patchstack.com/database/vulnerability/auxin-elements/wordpress-phlox-core-elements-plugin-2-14-0-unauthenticated-local-file-inclusion-vulnerability?_s_id=cve
Third Party Advisory
https://patchstack.com/database/vulnerability/auxin-elements/wordpress-phlox-core-elements-plugin-2-14-0-unauthenticated-local-file-inclusion-vulnerability?_s_id=cve
Third Party Advisory