CVE-2022-0403

Exploit

EPSS 0.29%
Veröffentlicht 04.04.2022 16:15:09
Zuletzt bearbeitet 21.11.2024 06:38:33
Quelle contact@wpscan.com
Teams Watchlist Login
Unerledigt Login

The Library File Manager WordPress plugin before 5.2.3 is using an outdated version of the elFinder library, which is know to be affected by security issues (CVE-2021-32682), and does not have any authorisation as well as CSRF checks in its connector AJAX action, allowing any authenticated users, such as subscriber to call it. Furthermore, as the options passed to the elFinder library does not restrict any file type, users with a role as low as subscriber can Create/Upload/Delete Arbitrary files and folders.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Wpjos ≫ Library File Manager SwPlatformwordpress Version < 5.2.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.29%	0.521

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.1	2.8	5.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
nvd@nist.gov	5.5	8	4.9	AV:N/AC:L/Au:S/C:N/I:P/A:P

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://wpscan.com/vulnerability/997a7fbf-98c6-453e-ad84-75c1e91d5a1e

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2022-0403

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-0403

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-0403

EUVD