Cyber Resilience

CVE-2023-0159

HighPublic PoC

Published: 13 February 2023

Published
13 February 2023
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score 0.9266 99.8th percentile
Risk Priority 71 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-0159 is a high-severity an unspecified weakness vulnerability in Wprealize Extensive Vc Addons For Wpbakery Page Builder. Its CVSS base score is 7.5 (High).

Operationally, ranked in the top 0.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

The Extensive VC Addons for WPBakery page builder WordPress plugin before version 1.9.1 contains an input-validation flaw in its template-loading logic. A parameter supplied to PHP's extract function is not sanitized, allowing an attacker to override the intended template path and retrieve arbitrary files from the underlying filesystem. The issue carries a CVSS 3.1 score of 7.5 and is tracked as CVE-2023-0159.

An unauthenticated remote attacker can trigger the flaw simply by sending a crafted request to any affected site. Successful exploitation yields disclosure of sensitive local files; the advisory notes that the same primitive can be escalated to remote code execution through PHP filter-chain techniques.

The referenced WPScan advisory confirms the vulnerability exists in all releases prior to 1.9.1 and states that updating to version 1.9.1 or later eliminates the defective code path. The associated EPSS score remains elevated near 0.93 with no material change from a documented low baseline.

EU & UK References

Vulnerability details

The Extensive VC Addons for WPBakery page builder WordPress plugin before 1.9.1 does not validate a parameter passed to the php extract function when loading templates, allowing an unauthenticated attacker to override the template path to read arbitrary files from…

more

the hosts file system. This may be escalated to RCE using PHP filter chains.

CWE(s)
None listed

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

wprealize
extensive vc addons for wpbakery page builder
≤ 1.9.1

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References