CVE-2023-5003: 
WordPress vulnerability analysis and mitigation

The Active Directory Integration / LDAP Integration WordPress plugin before version 4.1.10 contains a sensitive data exposure vulnerability. The plugin stores sensitive LDAP logs in a buffer file when an administrator exports authentication logs. The vulnerability exists because this log file is never removed and remains accessible to any users who know the URL, potentially exposing sensitive authentication information (WPScan, NVD).

The vulnerability occurs when the plugin's 'Log Authentication Requests' setting is enabled in LDAP/Active Directory Login for Intranet > Authentication Report. When authentication issues are logged and an administrator exports these logs, the resulting CSV file remains publicly accessible at '/wp-content/ldap-authentication-report.csv'. The vulnerability has been assigned a CVSS v3.1 base score of 7.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (WPScan, NVD).

The vulnerability allows unauthorized users to access sensitive LDAP authentication logs, which could contain critical information about authentication attempts and potential system configuration details. This exposure of sensitive data could lead to unauthorized access to system information and potentially aid in further attacks (WPScan).

The vulnerability has been fixed in version 4.1.10 of the Active Directory Integration / LDAP Integration WordPress plugin. Users are strongly advised to update to this version or later to address the security issue (WPScan).