Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2022-2357
- EPSS 0.5%
- Published 08.08.2022 14:15:08
- Last modified 21.11.2024 07:00:50
The WSM Downloader WordPress plugin through 1.4.0 allows any visitor to use its remote file download feature to download any local files, including sensitive ones like wp-config.php.
7.5
CVE-2022-2367
- EPSS 0.54%
- Published 08.08.2022 14:15:08
- Last modified 21.11.2024 07:00:51
The WSM Downloader WordPress plugin through 1.4.0 allows only specific popular websites to download images/files from, this can be bypassed due to the lack of good "link" parameter validation
1