8.8

CVE-2022-25602

WordPress Responsive Menu plugin <= 4.1.7 - Nonce token leak leading to arbitrary file upload, theme deletion, plugin settings change vulnerability

Responsive Menu <= 4.1.7 - Missing Authorization Checks

Nonce token leak vulnerability leading to arbitrary file upload, theme deletion, plugin settings change discovered in Responsive Menu WordPress plugin (versions <= 4.1.7).
Mögliche Gegenmaßnahme
Responsive Menu – Create Mobile-Friendly Menu: Update to version 4.1.8, or a newer patched version
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ExpresstechResponsive Menu SwPlatformwordpress Version <= 4.1.7
Weitere Schwachstelleninformationen
SystemWordPress Plugin
Produkt Responsive Menu – Create Mobile-Friendly Menu
Version [*, 4.1.8)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.26% 0.658
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
audit@patchstack.com 8.3 2.8 5.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://wordpress.org/plugins/responsive-menu/#developers
Product
Release Notes
https://patchstack.com/database/vulnerability/responsive-menu/wordpress-responsive-menu-plugin-4-1-7-nonce-token-leak-leading-to-arbitrary-file-upload-theme-deletion-plugin-settings-change-vulnerability
Third Party Advisory
https://www.wordfence.com/threat-intel/vulnerabilities/id/a56df440-a1ed-4c5a-ac9c-5ddeffb28e60
Third Party Advisory