CVE-2023-5931: 
WordPress vulnerability analysis and mitigation

The vulnerability (CVE-2023-5931) affects the rtMedia for WordPress, BuddyPress and bbPress plugin versions before 4.6.16. This security flaw allows attackers with low-privilege accounts (such as subscribers) to upload arbitrary files, including PHP files, to the server. The vulnerability was discovered by Krzysztof Zając from CERT PL and was publicly disclosed on November 29, 2023 (WPScan).

The vulnerability stems from improper file validation in the file upload functionality. When the plugin's JSON API is enabled, any authenticated user can exploit this vulnerability to upload arbitrary files to the server. The vulnerability has been assigned a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating a serious security risk with network access vector, low attack complexity, and high impact on confidentiality, integrity, and availability (NVD).

The vulnerability allows attackers with low-privilege accounts to upload and execute arbitrary PHP files on the affected server, potentially leading to remote code execution (RCE). This could result in complete compromise of the WordPress installation and potentially the underlying server (WPScan).

The vulnerability has been patched in version 4.6.16 of the rtMedia plugin. Users are strongly advised to update to this version or later to protect their installations. If immediate updating is not possible, it is recommended to disable the plugin's JSON API functionality (WPScan).