exploitDog

GHSA-j7q2-cxfq-x3j6

Опубликовано: 09 авг. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The WSM Downloader WordPress plugin through 1.4.0 allows any visitor to use its remote file download feature to download any local files, including sensitive ones like wp-config.php.

The WSM Downloader WordPress plugin through 1.4.0 allows any visitor to use its remote file download feature to download any local files, including sensitive ones like wp-config.php.

Ссылки

EPSS

Процентиль: 65%

0.00495

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-552

Связанные уязвимости

CVE-2022-2357

CVSS3: 7.5

nvd

больше 3 лет назад

The WSM Downloader WordPress plugin through 1.4.0 allows any visitor to use its remote file download feature to download any local files, including sensitive ones like wp-config.php.

EPSS

Процентиль: 65%

0.00495

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-552