CVE-2022-1540

🗓️ 05 Dec 2022 17:09:15Reported by [email protected]Type

The PostmagThemes Demo Import plugin in WordPress 1.0.7 allows admin to upload arbitrary files, leading to RCE

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Prion	Design/Logic Flaw	5 Dec 202217:15	–	prion
wpexploit	PostmagThemes Demo < 1.0.8 - Admin+ Arbitrary File Upload	11 Nov 202200:00	–	wpexploit
Patchstack	WordPress PostmagThemes Demo plugin <= 1.0.7 - Auth. Arbitrary File Upload vulnerability	11 Nov 202200:00	–	patchstack
Vulnrichment	CVE-2022-1540 PostmagThemes Demo <= 1.0.7 - Admin+ Arbitrary File Upload	5 Dec 202216:50	–	vulnrichment
CVE	CVE-2022-1540	5 Dec 202217:15	–	cve
WPVulnDB	PostmagThemes Demo < 1.0.8 - Admin+ Arbitrary File Upload	11 Nov 202200:00	–	wpvulndb
Cvelist	CVE-2022-1540 PostmagThemes Demo <= 1.0.7 - Admin+ Arbitrary File Upload	5 Dec 202216:50	–	cvelist

Nvd

Node

postmagthemes postmagthemes_demo_importRange≤1.0.7wordpress

Source	Link
wpscan	www.wpscan.com/vulnerability/77a524d8-0b1a-407a-98d2-d8d0ed78fa0f

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Dec 2022 17:15Current

CVSS37.2

EPSS0.00202