Remote Code Execution Vulnerability in rtMedia WordPress Plugin

Remote Code Execution Vulnerability in rtMedia WordPress Plugin

CVE-2023-5939 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

The rtMedia for WordPress, BuddyPress and bbPress WordPress plugin before 4.6.16 loads the contents of the import file in an unsafe manner, leading to remote code execution by privileged users.

Learn more about our Wordpress Pen Testing.