exploitDog

GHSA-w4v4-mjqq-j2fw

Опубликовано: 26 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using it in an include statement, which could lead to Local File Inclusion issues

The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using it in an include statement, which could lead to Local File Inclusion issues

Ссылки

EPSS

Процентиль: 98%

0.65164

Средний

7.5 High

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2022-1392

CVSS3: 7.5

nvd

почти 4 года назад

The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using it in an include statement, which could lead to Local File Inclusion issues

EPSS

Процентиль: 98%

0.65164

Средний

7.5 High

CVSS3

CVE ID

Дефекты

CWE-22