logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2022-4108

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2022-4108

Description:
The Wholesale Market for WooCommerce WordPress plugin before 1.0.8 does not validate user input used to generate system path, allowing high privilege users such as admin to download arbitrary file from the server even when they should not be able to (for example in multisite)
Last updated date:
12/23/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
12/23/2022
Reference url to background

https://wpscan.com/vulnerability/9d1770df-91f0-41e3-af0d-522ae4e62470

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy