cleantalk
Vulnerabilities and Security Researches

Prevent files / folders access, CVE-2023-4238

CVE, Research URL

CVE-2023-4238

Home page URL

Security reports for Prevent files / folders access

Application

Prevent files / folders access

Published on
Sep 25, 2023
Research Description
The Prevent files / folders access WordPress plugin before 2.5.2 does not validate files to be uploaded, which could allow attackers to upload arbitrary files such as PHP on the server.
Affected versions
Min -, max 2.5.2.
Status
vulnerable
Previous vulnerability researches
Prevent files / folders access (CVE-2023-4238) , Jun 06, 2024
Prevent files / folders access (CVE-2025-53561) , Aug 09, 2025
New vulnerability
BaiduXZH Submit(百度熊掌号) (CVE-2025-49063) , Aug 10, 2025
Visit Counter (CVE-2025-49065) , Aug 10, 2025
OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer) (CVE-2025-6572) , Aug 09, 2025
Prevent files / folders access (CVE-2025-53561) , Aug 09, 2025
Porn Videos Embed (CVE-2025-49061) , Aug 09, 2025