Vulnerability CVE-2022-2357


Published: 2022-08-08

Description:
The WSM Downloader WordPress plugin through 1.4.0 allows any visitor to use its remote file download feature to download any local files, including sensitive ones like wp-config.php.

Type:

CWE-552

(Files or Directories Accessible to External Parties)

 References:
https://wpscan.com/vulnerability/42499b84-684e-42e1-b7f0-de206d4da553

Copyright 2023, cxsecurity.com

 

Back to Top