Vulnerability CVE-2022-1476

Vulnerability CVE-2022-1476

Published: 2022-05-10

Description:

The All-in-One WP Migration plugin for WordPress is vulnerable to arbitrary file deletion via directory traversal due to insufficient file validation via the ~/lib/model/class-ai1wm-backups.php file, in versions up to, and including, 7.58. This can be exploited by administrative users, and users who have access to the site's secret key.

Type:

CWE-22

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS2 => (AV:N/AC:L/Au:S/C:N/I:P/A:P)

CVSS Base Score	Impact Subscore	Exploitability Subscore
5.5/10	4.9/10	8/10

Exploit range	Attack complexity	Authentication
Remote	Low	Single time
Confidentiality impact	Integrity impact	Availability impact
None	Partial	Partial

Affected software
Servmask -> All-in-one wp migration

References:

https://www.wordfence.com/vulnerability-advisories/#CVE-2022-1476

https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2715609%40all-in-one-wp-migration&new=2715609%40all-in-one-wp-migration&sfp_email=&sfph_mail

Vulnerability CVE-2022-1476

CWE-22

CVSS2 => (AV:N/AC:L/Au:S/C:N/I:P/A:P)

5.5/10

4.9/10

8/10

Remote

Low

Single time

None

Partial

Partial

Affected software

References: