{"uuid": "d6f6908a-6a3d-453a-80b1-38dce59266e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-4836", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10200", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-4836\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The WordPress File Sharing Plugin WordPress plugin before 2.0.5 does not check authorization before displaying files and folders, allowing users to gain access to those filed by manipulating IDs which can easily be brute forced\n\ud83d\udccf Published: 2023-10-31T13:54:46.188Z\n\ud83d\udccf Modified: 2025-04-03T13:21:19.295Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/c17f2534-d791-4fe3-b45b-875777585dc6\n2. https://research.cleantalk.org/cve-2023-4836-user-private-files-idor-to-sensitive-data-and-private-files-exposure-leak-of-info-poc", "creation_timestamp": "2025-04-03T13:34:42.000000Z"}