CVE•Published 2023-08-09•Modified 2026-04-08•1 article on news•6 live references•NVD data
CVE-2023-4243Full · Full_-_customer
Vulnerability data via NVD (ingested)
CVSS v3.1
8.8
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS percentile
73
Exploit Prediction Scoring System · top 27% of all CVEs
Description
The FULL - Customer plugin for WordPress is vulnerable to Arbitrary File Upload via the /install-plugin REST route in versions up to, and including, 2.2.3 due to improper authorization. This allows authenticated attackers with subscriber-level permissions and above to execute code by installing plugins from arbitrary remote locations including non-repository sources onto the site, granted they are packaged as a valid WordPress plugin.
Timeline
Published 2023-08-09
Modified 2026-04-08
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
Shodan · vuln tag0 hosts
vuln:CVE-2023-4243Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · WP plugin path
http.html:"/wp-content/plugins/full---customer/"Matches any site loading the "full---customer" plugin — doesn't rely on Shodan's vuln tag.
Shodan · product
product:"Full Full - Customer"All exposed Full Full - Customer instances — cross-reference with the CVE's affected-version range.
Shodan · banner/body mention
http.html:"Full - Customer"HTTP body or banner mentions "Full - Customer" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2023-4243Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2023-4243Censys host search filtered to this CVE id.
grep.app
CVE-2023-4243Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2023-4243GitHub code search for direct mentions.
Google dork
"CVE-2023-4243" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub (6)
CVE-2023-42436 repos
six2dez/reconftwShell
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
KnudsenMorten/SecurityInsightPowerShell
Rethink Secure Score: risk-based scoring across Defender XDR, Entra, AD, Azure, ExposureGraph, and Shodan — weighted by consequence, Tier 0–3 criticality, and risk factors. Fix wha…
hugefiver/mystarsunknown
renaudallard/reolink_firmwaresPython
analysis of reolink firmwares
Sunjid-Ahmed/reconftw-mainShell
nerdznj/ReconFTW-For_IranShell
This project is the same ReconFTW project, which is optimized for reconnoitering Iranian targets...