CVE-2023-54352

An unauthenticated attacker can upload a malicious PHP file, such as a webshell, to the WordPress Seotheme directory. The advisory indicates that this file can be accessed at `/wp-content/themes/seotheme/mar.php` [ref_id=2]. Once uploaded, the attacker can access this file via a web browser to execute system commands and potentially upload additional files for persistent access [ref_id=2]. The exploit code demonstrates uploading a PHP shell named `mar.php` [ref_id=1].

The vulnerability lies within the WordPress Seotheme, specifically allowing the upload of malicious files to the theme directory. The exploit targets the path `/wp-content/themes/seotheme/mar.php` for accessing the uploaded webshell [ref_id=1, ref_id=2].

The advisory does not specify a patch or provide details on how the vulnerability is fixed. It recommends updating to a version that addresses the vulnerability. The provided exploit code targets the file `/wp-content/themes/seotheme/mar.php` [ref_id=1, ref_id=2].

The provided reference [ref_id=1] includes Python code that can be used to reproduce the vulnerability by targeting a vulnerable WordPress site and uploading a PHP shell.