CVE-2023-2916

HIGH

InfiniteWP Client <= 1.11.1 - Authenticated Sensitive Information Exposure via admin_notice Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-2916. PoCs published by d0rb.

AI-analyzed exploit summary This PoC exploits CVE-2023-2916, a sensitive information exposure vulnerability in the InfiniteWP Client plugin for WordPress. It demonstrates how an authenticated attacker can extract sensitive configuration details via the 'admin_notice' endpoint.

Description

The InfiniteWP Client plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 1.11.1 via the 'admin_notice' function. This can allow authenticated attackers with subscriber-level permissions or above to extract sensitive data including configuration. It can only be exploited if the plugin has not been configured yet. If combined with another arbitrary plugin installation and activation vulnerability, it may be possible to connect a site to InfiniteWP which would make remote management possible and allow for elevation of privileges.

Exploits (1)

nomisec WORKING POC

by d0rb · poc

https://github.com/d0rb/CVE-2023-2916

View Code ZIP pw:eip

This PoC exploits CVE-2023-2916, a sensitive information exposure vulnerability in the InfiniteWP Client plugin for WordPress. It demonstrates how an authenticated attacker can extract sensitive configuration details via the 'admin_notice' endpoint.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: InfiniteWP Client plugin for WordPress (versions up to and including 1.11.1)

Auth required

Prerequisites: Valid WordPress credentials with subscriber-level permissions or higher · InfiniteWP Client plugin not previously configured

MITRE ATT&CK

T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit

https://plugins.trac.wordpress.org/browser/iwp-client/tags/1.11.1/core.class.php#L365

Patch

https://plugins.trac.wordpress.org/changeset/2925897/iwp-client#file4

Exploit, Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/aa157c80-447f-4406-9e49-9cc6208b7b19?source=cve

Scores

CVSS v3 7.5

EPSS 0.2089

EPSS Percentile 97.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-200 CWE-668

Status published

Products (2)

revmakx/InfiniteWP Client < 1.11.1

revmakx/infinitewp_client < 1.12.1

Published Aug 15, 2023

Tracked Since Feb 18, 2026