CVE-2023-28408 Information

Description

Directory traversal vulnerability in MW WP Form versions v4.4.2 and earlier allows a remote unauthenticated attacker to alter the website or cause a denial-of-service (DoS) condition and obtain sensitive information depending on settings.

Reference

https://jvn.jp/en/jp/JVN01093915/ https://plugins.2inc.org/mw-wp-form/blog/2023/05/08/752/