Lucene search
WPScanCVELIST:CVE-2022-4060HistoryJan 16, 2023 - 3:38 p.m.
CVE-2022-4060 User Post Gallery <= 2.19 - Unauthenticated RCE
2023-01-1615:38:05
WPScan
www.cve.org
3
cve-2022-4060
user post gallery
wordpress plugin
unauthenticated rce
The User Post Gallery WordPress plugin through 2.19 does not limit what callback functions can be called by users, making it possible to any visitors to run code on sites running it.
CNA Affected
[
{
"vendor": "Unknown",
"product": "User Post Gallery",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThanOrEqual": "2.19"
}
],
"defaultStatus": "affected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
cve
cve
CVE-2022-4060
2023-01-16 16:15:11
CVE-2023-0039
2023-01-03 15:15:10
prion
prion
Code injection
2023-01-16 16:15:00
Open redirect
2023-01-03 15:15:00
nvd
nvd
CVE-2022-4060
2023-01-16 16:15:11
CVE-2023-0039
2023-01-03 15:15:10
githubexploit
githubexploit
Exploit for CVE-2022-4060
2023-09-15 21:38:47
wpexploit
wpexploit
User Post Gallery <= 2.19 - Unauthenticated RCE
2022-12-23 00:00:00
wpvulndb
wpvulndb
User Post Gallery <= 2.19 - Unauthenticated RCE
2022-12-23 00:00:00
nuclei
nuclei
WordPress User Post Gallery <=2.19 - Remote Code Execution
2023-03-05 13:42:10