Lucene search
China National Vulnerability DatabaseCNVD-2022-86450HistoryNov 23, 2022 - 12:00 a.m.
WordPress Booster for WooCommerce plugin path traversal vulnerability
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
wordpress
woocommerce
path traversal
vulnerability
file download
server
exploit
EPSS
0.001
Percentile
32.8%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Booster for WooCommerce plugin versions prior to 1.1.7, 5.6.5, and 5.6.7 contain a path traversal vulnerability that stems from the fact that the Booster Elite plugin does not validate file downloads for certain modules. An attacker could exploit the vulnerability to download arbitrary files from the server.
Related
prion
prion
Code injection
2022-11-21 11:15:00
cvelist
cvelist
CVE-2022-3762 Booster for WooCommerce - ShopManager+ Arbitrary File Download
2022-11-21 00:00:00
wpvulndb
wpvulndb
Booster for WooCommerce - ShopManager+ Arbitrary File Download
2022-10-31 00:00:00
patchstack
patchstack
cve
cve
CVE-2022-3762
2022-11-21 11:15:21
nvd
nvd
CVE-2022-3762
2022-11-21 11:15:21
wpexploit
wpexploit
Booster for WooCommerce - ShopManager+ Arbitrary File Download
2022-10-31 00:00:00