Login Sign Up

CVE-2023-27634

8.8 HIGH
CSRF

📋 TL;DR

This Cross-Site Request Forgery (CSRF) vulnerability in the Shingo Intrepidity WordPress plugin allows attackers to trick authenticated administrators into uploading arbitrary files. This could lead to remote code execution or website compromise. Only WordPress sites using the Intrepidity plugin version 1.5.1 or earlier are affected.

💻 Affected Systems

Products:
  • Shingo Intrepidity WordPress Plugin
Versions: <= 1.5.1
Operating Systems: Any OS running WordPress
Default Config Vulnerable: ⚠️ Yes
Notes: Requires WordPress installation with the Intrepidity plugin enabled and an authenticated admin session.

📦 What is this software?

Intrepidity by Intrepidity Project

View all CVEs affecting Intrepidity →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete website takeover through arbitrary file upload leading to remote code execution, data theft, defacement, or malware distribution.

🟠

Likely Case

Unauthorized file upload allowing backdoor installation, content manipulation, or privilege escalation.

🟢

If Mitigated

No impact if proper CSRF protections are implemented or plugin is updated/disabled.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires tricking an authenticated admin into visiting a malicious page. CSRF attacks are well-understood and easy to weaponize.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.5.2 or later

Vendor Advisory: https://patchstack.com/database/vulnerability/intrepidity/wordpress-intrepidity-theme-1-5-1-cross-site-request-forgery-csrf?_s_id=cve

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find 'Intrepidity' plugin. 4. Click 'Update Now' if available. 5. If no update is available, download version 1.5.2+ from WordPress repository and manually update.

🔧 Temporary Workarounds

Disable Intrepidity Plugin

all

Temporarily disable the vulnerable plugin until patched.

wp plugin deactivate intrepidity

Implement CSRF Tokens

all

Add CSRF protection to file upload endpoints if custom code modifications are possible.

🧯 If You Can't Patch

  • Implement web application firewall (WAF) rules to block CSRF attacks targeting file upload endpoints.
  • Restrict admin access to trusted networks only and enforce strong authentication for admin accounts.

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel > Plugins > Installed Plugins for Intrepidity plugin version 1.5.1 or earlier.

Check Version:

wp plugin get intrepidity --field=version

Verify Fix Applied:

Verify plugin version is 1.5.2 or later in WordPress admin panel.

📡 Detection & Monitoring

Log Indicators:

  • Unusual file uploads via admin endpoints
  • CSRF token validation failures in web server logs

Network Indicators:

  • POST requests to /wp-admin/admin-ajax.php or similar endpoints without referrer headers
  • File uploads from unexpected sources

SIEM Query:

source="wordpress.log" AND ("admin-ajax.php" OR "file upload") AND status=200 AND user_agent NOT IN ["expected_browsers"]

📊 Metadata

CVE ID: CVE-2023-27634
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-352
Published: June 15, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-27634, you might also want to check these:

CVE-2025-23922 10.0

A Cross-Site Request Forgery (CSRF) vulnerability in the Harsh iSpring Embedder WordPress plugin all...

Same vulnerability type (CWE-352)
CVE-2020-23426 9.8

CVE-2020-23426 is a privilege escalation vulnerability in zzcms 201910 that allows attackers to gain...

Same vulnerability type (CWE-352)
CVE-2024-33449 9.8

This SSRF vulnerability in PDFMyURL allows attackers to make the service send requests to internal s...

Same vulnerability type (CWE-352)