Lucene search
WPScanCVELIST:CVE-2022-2392HistoryAug 22, 2022 - 3:03 p.m.
CVE-2022-2392 Lana Downloads Manager < 1.8.0 - Contributor+ Arbitrary File Download
2022-08-2215:03:01
CWE-552
WPScan
www.cve.org
cve-2022-2392
vulnerability
wordpress
plugin
arbitrary file download
contributor
permissions
0.001 Low
EPSS
Percentile
32.8%
The Lana Downloads Manager WordPress plugin before 1.8.0 is affected by an arbitrary file download vulnerability that can be exploited by users with “Contributor” permissions or higher.
CNA Affected
[
{
"product": "Lana Downloads Manager",
"vendor": "Unknown",
"versions": [
{
"lessThan": "1.8.0",
"status": "affected",
"version": "1.8.0",
"versionType": "custom"
}
]
}
]Related
prion
prion
Arbitrary file deletion
2022-08-22 15:15:00
wpvulndb
wpvulndb
Lana Downloads Manager < 1.8.0 - Contributor+ Arbitrary File Download
2022-08-01 00:00:00
nvd
nvd
CVE-2022-2392
2022-08-22 15:15:15
wpexploit
wpexploit
Lana Downloads Manager < 1.8.0 - Contributor+ Arbitrary File Download
2022-08-01 00:00:00
cve
cve
CVE-2022-2392
2022-08-22 15:15:15
patchstack
patchstack