CVE-2023-6444
Published: 11 March 2024
Summary
CVE-2023-6444 is a medium-severity an unspecified weakness vulnerability in Castos Seriously Simple Podcasting. Its CVSS base score is 5.3 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Email Addresses (T1589.002); ranked in the top 1.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
The Seriously Simple Podcasting WordPress plugin before version 3.0.0 contains an information disclosure vulnerability that exposes the podcast owner's email address, which defaults to the site administrator email, through an unauthenticated crafted request. The flaw affects any site using the plugin and carries a CVSS 3.1 score of 5.3 reflecting network-accessible exposure with limited confidentiality impact and no integrity or availability consequences.
An unauthenticated attacker can send a specially crafted request to the plugin endpoint and retrieve the administrator email address without requiring credentials or user interaction, enabling reconnaissance that may support further targeted attacks against the WordPress site.
The referenced WPScan advisory identifies the issue in versions prior to 3.0.0, indicating that updating the plugin eliminates the disclosure vector. The associated EPSS score reached a peak of 0.6926 with a current value of 0.6136, showing moderate and relatively stable exploitation probability since disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-58681
Vulnerability details
The Seriously Simple Podcasting WordPress plugin before 3.0.0 discloses the Podcast owner's email address (which by default is the admin email address) via an unauthenticated crafted request.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The vulnerability enables unauthenticated disclosure of the administrator's email address via crafted requests to public-facing WordPress endpoints, directly facilitating reconnaissance to gather victim email addresses.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.