Cyber Resilience

CVE-2023-6444

MediumPublic PoC

Published: 11 March 2024

Published
11 March 2024
Modified
01 May 2025
KEV Added
Patch
CVSS Score v3.1 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score 0.6136 98.4th percentile
Risk Priority 47 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-6444 is a medium-severity an unspecified weakness vulnerability in Castos Seriously Simple Podcasting. Its CVSS base score is 5.3 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Email Addresses (T1589.002); ranked in the top 1.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

The Seriously Simple Podcasting WordPress plugin before version 3.0.0 contains an information disclosure vulnerability that exposes the podcast owner's email address, which defaults to the site administrator email, through an unauthenticated crafted request. The flaw affects any site using the plugin and carries a CVSS 3.1 score of 5.3 reflecting network-accessible exposure with limited confidentiality impact and no integrity or availability consequences.

An unauthenticated attacker can send a specially crafted request to the plugin endpoint and retrieve the administrator email address without requiring credentials or user interaction, enabling reconnaissance that may support further targeted attacks against the WordPress site.

The referenced WPScan advisory identifies the issue in versions prior to 3.0.0, indicating that updating the plugin eliminates the disclosure vector. The associated EPSS score reached a peak of 0.6926 with a current value of 0.6136, showing moderate and relatively stable exploitation probability since disclosure.

EU & UK References

Vulnerability details

The Seriously Simple Podcasting WordPress plugin before 3.0.0 discloses the Podcast owner's email address (which by default is the admin email address) via an unauthenticated crafted request.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1589.002 Email Addresses Reconnaissance
Adversaries may gather email addresses that can be used during targeting.
Why these techniques?

The vulnerability enables unauthenticated disclosure of the administrator's email address via crafted requests to public-facing WordPress endpoints, directly facilitating reconnaissance to gather victim email addresses.

Affected Assets

castos
seriously simple podcasting
≤ 3.0.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References